CVE-2019-14586

Опубликовано: 23 нояб. 2020

Источник: debian

EPSS Низкий

Описание

Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
edk2	fixed	0~20200229.4c0f6e34-1		package
edk2	fixed	0~20181115.85588389-3+deb10u1	buster	package
edk2	end-of-life		jessie	package

EPSS

Процентиль: 34%

0.00135

Низкий

Связанные уязвимости

CVE-2019-14586

CVSS3: 8

ubuntu

около 5 лет назад

Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.

CVE-2019-14586

CVSS3: 4.6

redhat

почти 6 лет назад

Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.

CVE-2019-14586

CVSS3: 8

nvd

около 5 лет назад

Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.

GHSA-ph92-fm2f-7w7p

github

больше 3 лет назад

Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.

EPSS

Процентиль: 34%

0.00135

Низкий