CVE-2019-14563

Опубликовано: 23 нояб. 2020

Источник: debian

EPSS Низкий

Описание

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

Пакет	Статус	Версия исправления	Релиз	Тип
edk2	fixed	0~20200229.4c0f6e34-1		package
edk2	fixed	0~20181115.85588389-3+deb10u1	buster	package
edk2	end-of-life		jessie	package

https://github.com/tianocore/edk2/commit/322ac05f8bbc1bce066af1dabd1b70ccdbe28891
https://bugzilla.tianocore.org/show_bug.cgi?id=2001

EPSS

Процентиль: 17%

0.00054

Низкий

CVE-2019-14563

CVSS3: 7.8

ubuntu

около 5 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2019-14563

CVSS3: 6.4

redhat

около 6 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2019-14563

CVSS3: 7.8

nvd

около 5 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

GHSA-5q44-mpwv-jf5p

github

больше 3 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

ELSA-2020-1712

oracle-oval

почти 6 лет назад

ELSA-2020-1712: edk2 security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 17%

0.00054

Низкий