CVE-2018-12180

Опубликовано: 27 мар. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tianocore:edk_ii:-:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.02127

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2018-12180

CVSS3: 8.8

ubuntu

около 6 лет назад

Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.

CVE-2018-12180

CVSS3: 8.3

redhat

больше 6 лет назад

Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.

CVE-2018-12180

CVSS3: 8.8

debian

около 6 лет назад

Buffer overflow in BlockIo service for EDK II may allow an unauthentic ...

GHSA-9ghw-h32x-5rfx

CVSS3: 8.8

github

около 3 лет назад

Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.

ELSA-2019-0968

oracle-oval

почти 6 лет назад

ELSA-2019-0968: edk2 security update (IMPORTANT)

EPSS

Процентиль: 83%

0.02127

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787