Filtered by vendor Tianocore
Subscribe
Total
44 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-2486 | 1 Tianocore | 1 Edk2 | 2025-12-19 | N/A | 8.8 HIGH |
|
The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based decision to continue running inside the Shell itself, which is believed to be sufficient to enforce Secure Boot restrictions. This is an additional repair on top of the incomplete fix for CVE-2023-48733.
|
|||||
| CVE-2023-45237 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 5.3 MEDIUM |
|
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality.
|
|||||
| CVE-2023-45236 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 5.8 MEDIUM |
|
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality.
|
|||||
| CVE-2023-45235 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 8.3 HIGH |
|
EDK2's Network Package is susceptible to a buffer overflow vulnerability when
handling Server ID option
from a DHCPv6 proxy Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
|
|||||
| CVE-2023-45234 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 8.3 HIGH |
|
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
|
|||||
| CVE-2023-45233 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 7.5 HIGH |
|
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Availability.
|
|||||
| CVE-2023-45232 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 7.5 HIGH |
|
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Availability.
|
|||||
| CVE-2023-45231 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 6.5 MEDIUM |
|
EDK2's Network Package is susceptible to an out-of-bounds read
vulnerability when processing Neighbor Discovery Redirect message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality.
|
|||||
| CVE-2023-45230 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 8.3 HIGH |
|
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
|
|||||
| CVE-2023-45229 | 1 Tianocore | 1 Edk2 | 2025-11-04 | N/A | 6.5 MEDIUM |
|
EDK2's Network Package is susceptible to an out-of-bounds read
vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality.
|
|||||
| CVE-2022-36765 | 1 Tianocore | 1 Edk2 | 2025-11-03 | N/A | 7.0 HIGH |
|
EDK2 is susceptible to a vulnerability in the CreateHob() function, allowing a user to trigger a integer overflow to buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.
|
|||||
| CVE-2022-36764 | 1 Tianocore | 1 Edk2 | 2025-11-03 | N/A | 7.0 HIGH |
|
EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.
|
|||||
| CVE-2022-36763 | 1 Tianocore | 1 Edk2 | 2025-11-03 | N/A | 7.0 HIGH |
|
EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.
|
|||||
| CVE-2021-38578 | 2 Insyde, Tianocore | 2 Kernel, Edk2 | 2025-11-03 | 7.5 HIGH | 7.4 HIGH |
|
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
|
|||||
| CVE-2021-38576 | 1 Tianocore | 1 Edk2 | 2025-11-03 | 7.8 HIGH | 7.5 HIGH |
|
A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.
|
|||||
| CVE-2021-38575 | 2 Insyde, Tianocore | 2 Kernel, Edk2 | 2025-11-03 | 6.8 MEDIUM | 8.1 HIGH |
|
NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
|
|||||
| CVE-2021-28216 | 1 Tianocore | 1 Edk Ii | 2025-11-03 | 4.6 MEDIUM | 7.8 HIGH |
|
BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.
|
|||||
| CVE-2023-48733 | 3 Canonical, Debian, Tianocore | 3 Lxd, Debian Linux, Edk2 | 2025-08-26 | N/A | 6.7 MEDIUM |
|
An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot.
|
|||||
| CVE-2023-49721 | 2 Canonical, Tianocore | 2 Lxd, Edk2 | 2025-08-26 | N/A | 6.7 MEDIUM |
|
An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.
|
|||||
| CVE-2021-28213 | 1 Tianocore | 1 Edk2 | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.
|
|||||
| CVE-2021-28211 | 1 Tianocore | 1 Edk2 | 2024-11-21 | 4.6 MEDIUM | 6.7 MEDIUM |
|
A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.
|
|||||
| CVE-2021-28210 | 1 Tianocore | 1 Edk2 | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
An unlimited recursion in DxeCore in EDK II.
|
|||||
| CVE-2019-14587 | 2 Debian, Tianocore | 2 Debian Linux, Edk2 | 2024-11-21 | 3.3 LOW | 6.5 MEDIUM |
|
Logic issue EDK II may allow an unauthenticated user to potentially enable denial of service via adjacent access.
|
|||||
| CVE-2019-14586 | 2 Debian, Tianocore | 2 Debian Linux, Edk2 | 2024-11-21 | 5.2 MEDIUM | 8.0 HIGH |
|
Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.
|
|||||
| CVE-2019-14584 | 1 Tianocore | 1 Edk2 | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2019-14575 | 2 Debian, Tianocore | 2 Debian Linux, Edk2 | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2019-14563 | 2 Debian, Tianocore | 2 Debian Linux, Edk2 | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2019-14562 | 2 Debian, Tianocore | 2 Debian Linux, Edk2 | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.
|
|||||
| CVE-2019-14559 | 1 Tianocore | 1 Edk2 | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access.
|
|||||
| CVE-2019-14553 | 1 Tianocore | 1 Edk2 | 2024-11-21 | 4.0 MEDIUM | 4.9 MEDIUM |
|
Improper authentication in EDK II may allow a privileged user to potentially enable information disclosure via network access.
|
|||||
| CVE-2019-11098 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 4.6 MEDIUM | 6.8 MEDIUM |
|
Insufficient input validation in MdeModulePkg in EDKII may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access.
|
|||||
| CVE-2019-0161 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access.
|
|||||
| CVE-2019-0160 | 4 Fedoraproject, Opensuse, Redhat and 1 more | 8 Fedora, Leap, Enterprise Linux and 5 more | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access.
|
|||||
| CVE-2018-3613 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
|
|||||
| CVE-2018-12183 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 4.6 MEDIUM | 6.8 MEDIUM |
|
Stack overflow in DxeCore for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
|
|||||
| CVE-2018-12182 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 4.6 MEDIUM | 6.7 MEDIUM |
|
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
|
|||||
| CVE-2018-12181 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 3.6 LOW | 6.0 MEDIUM |
|
Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access.
|
|||||
| CVE-2018-12180 | 2 Opensuse, Tianocore | 2 Leap, Edk Ii | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.
|
|||||
| CVE-2018-12179 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
|
|||||
| CVE-2018-12178 | 1 Tianocore | 1 Edk Ii | 2024-11-21 | 6.4 MEDIUM | 9.1 CRITICAL |
|
Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network.
|
|||||