Количество 46
Количество 46
SUSE-SU-2026:0120-1
Security update for ovmf
BDU:2024-01539
Уязвимость функции createhob() библиотеки Tianocore EDK2 , вызванная переполнением буфера, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
SUSE-SU-2025:0421-1
Security update for ovmf
SUSE-SU-2025:0407-1
Security update for ovmf
SUSE-SU-2025:0503-1
Security update for ovmf
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Seq ...
CVE-2023-45236
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45236
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45236
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45236
CVE-2023-45236
EDK2's Network Package is susceptible to a predictable TCP Initial Seq ...
GHSA-fxqf-p2p3-gxvr
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
GHSA-fqc4-ffq5-4r98
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
BDU:2024-00658
Уязвимость компонента TCP Initial Sequence Number Handler библиотеки Tianocore EDK2, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным
BDU:2024-00626
Уязвимость функции NetRandomInitSeed() библиотеки Tianocore edk2, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации или вызвать отказ в обслуживании
RLSA-2024:3017
Important: edk2 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | SUSE-SU-2026:0120-1 Security update for ovmf | 0% Низкий | 5 месяцев назад | |
 | BDU:2024-01539 Уязвимость функции createhob() библиотеки Tianocore EDK2 , вызванная переполнением буфера, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации | CVSS3: 7.8 | 0% Низкий | больше 2 лет назад |
| SUSE-SU-2025:0421-1 Security update for ovmf | больше 1 года назад | ||
| SUSE-SU-2025:0407-1 Security update for ovmf | больше 1 года назад | ||
| SUSE-SU-2025:0503-1 Security update for ovmf | больше 1 года назад | ||
 | CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
 | CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 7.5 | 1% Низкий | больше 2 лет назад |
 | CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
 | CVSS3: 7.5 | 1% Низкий | около 2 лет назад | |
| CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Seq ... | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
| CVE-2023-45236 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.8 | 1% Низкий | больше 2 лет назад |
| CVE-2023-45236 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 7.5 | 1% Низкий | больше 2 лет назад |
| CVE-2023-45236 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.8 | 1% Низкий | больше 2 лет назад |
| CVSS3: 7.5 | 1% Низкий | около 2 лет назад | |
| CVE-2023-45236 EDK2's Network Package is susceptible to a predictable TCP Initial Seq ... | CVSS3: 5.8 | 1% Низкий | больше 2 лет назад |
| GHSA-fxqf-p2p3-gxvr EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
| GHSA-fqc4-ffq5-4r98 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.8 | 1% Низкий | больше 2 лет назад |
| BDU:2024-00658 Уязвимость компонента TCP Initial Sequence Number Handler библиотеки Tianocore EDK2, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
| BDU:2024-00626 Уязвимость функции NetRandomInitSeed() библиотеки Tianocore edk2, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации или вызвать отказ в обслуживании | CVSS3: 5.3 | 1% Низкий | почти 3 года назад |
 | RLSA-2024:3017 Important: edk2 security update | около 1 года назад |
Уязвимостей на страницу