Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Edk Ii Security Vulnerabilities

cve
cve

CVE-2018-12178

Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network.

9.1CVSS

8.5AI Score

0.004EPSS

2019-03-27 08:29 PM
103
cve
cve

CVE-2018-12179

Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.

7.8CVSS

8.3AI Score

0.001EPSS

2019-03-27 08:29 PM
48
cve
cve

CVE-2018-12180

Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.

8.8CVSS

8.5AI Score

0.014EPSS

2019-03-27 08:29 PM
118
cve
cve

CVE-2018-12181

Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access.

6CVSS

7.2AI Score

0.001EPSS

2019-03-27 08:29 PM
181
cve
cve

CVE-2018-12182

Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.

6.7CVSS

7.5AI Score

0.001EPSS

2019-03-27 08:29 PM
45
cve
cve

CVE-2018-12183

Stack overflow in DxeCore for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.

6.8CVSS

7.9AI Score

0.002EPSS

2019-03-27 08:29 PM
43
cve
cve

CVE-2018-3613

Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.

7.8CVSS

7.3AI Score

0.001EPSS

2019-03-27 08:29 PM
116
cve
cve

CVE-2019-0160

Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access.

9.8CVSS

9.5AI Score

0.004EPSS

2019-03-27 08:29 PM
202
cve
cve

CVE-2019-0161

Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access.

5.5CVSS

6.2AI Score

0.001EPSS

2019-03-27 08:29 PM
200
2
cve
cve

CVE-2019-11098

Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access.

6.8CVSS

6.9AI Score

0.001EPSS

2021-07-14 02:15 PM
63
2
cve
cve

CVE-2021-28216

BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.

7.8CVSS

7.4AI Score

0.0005EPSS

2021-08-05 09:15 PM
69
10