CVE-2019-14563

Опубликовано: 05 фев. 2020

Источник: redhat

CVSS3: 6.4

Описание

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	ovmf	Will not fix
Red Hat Enterprise Linux 8	edk2	Fixed	RHSA-2020:1712	28.04.2020

Показывать по

Статус:

Moderate

Дефект:

CWE-190

https://bugzilla.redhat.com/show_bug.cgi?id=1758620edk2: numeric truncation in MdeModulePkg/PiDxeS3BootScriptLib

6.4 Medium

CVSS3

CVE-2019-14563

CVSS3: 7.8

ubuntu

около 5 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2019-14563

CVSS3: 7.8

nvd

около 5 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2019-14563

CVSS3: 7.8

debian

около 5 лет назад

Integer truncation in EDK II may allow an authenticated user to potent ...

GHSA-5q44-mpwv-jf5p

github

больше 3 лет назад

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

ELSA-2020-1712

oracle-oval

почти 6 лет назад

ELSA-2020-1712: edk2 security, bug fix, and enhancement update (MODERATE)

6.4 Medium

CVSS3