Количество 41
Количество 41
BDU:2024-00658
Уязвимость компонента TCP Initial Sequence Number Handler библиотеки Tianocore EDK2, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным
ROS-20240625-06
Множественные уязвимости edk2-tools
CVE-2024-1298
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
CVE-2024-1298
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
CVE-2024-1298
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
CVE-2024-1298
CVE-2024-1298
EDK2 contains a vulnerability when S3 sleep is activated where an Atta ...
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
CVE-2023-45237
CVE-2023-45237
EDK2's Network Package is susceptible to a predictable TCP Initial Seq ...
SUSE-SU-2025:02516-1
Security update for ovmf
SUSE-SU-2024:4088-1
Security update for ovmf
GHSA-xvcj-qw55-xx42
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
BDU:2025-12007
Уязвимость компонента FirmwarePerformancePei.c среды с открытым исходным кодом для разработки UEFI EDK2, позволяющая нарушителю вызвать отказ в обслуживании
GHSA-fxqf-p2p3-gxvr
EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.
BDU:2024-00626
Уязвимость функции NetRandomInitSeed() библиотеки Tianocore edk2, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации или вызвать отказ в обслуживании
ROS-20251016-03
Уязвимость edk2-tools
RLSA-2024:9088
Moderate: edk2 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-00658 Уязвимость компонента TCP Initial Sequence Number Handler библиотеки Tianocore EDK2, позволяющая нарушителю получить несанкционированный доступ к конфиденциальным данным | CVSS3: 5.3 | 0% Низкий | почти 2 года назад |
 | ROS-20240625-06 Множественные уязвимости edk2-tools | CVSS3: 8.3 | больше 1 года назад | |
 | CVE-2024-1298 EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability. | CVSS3: 6 | 0% Низкий | больше 1 года назад |
 | CVE-2024-1298 EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability. | CVSS3: 6 | 0% Низкий | больше 1 года назад |
 | CVE-2024-1298 EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability. | CVSS3: 6 | 0% Низкий | больше 1 года назад |
 | CVSS3: 6 | 0% Низкий | больше 1 года назад | |
| CVE-2024-1298 EDK2 contains a vulnerability when S3 sleep is activated where an Atta ... | CVSS3: 6 | 0% Низкий | больше 1 года назад |
| CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.3 | 0% Низкий | почти 2 года назад |
| CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
| CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.3 | 0% Низкий | почти 2 года назад |
| CVSS3: 7.5 | 0% Низкий | больше 1 года назад | |
| CVE-2023-45237 EDK2's Network Package is susceptible to a predictable TCP Initial Seq ... | CVSS3: 5.3 | 0% Низкий | почти 2 года назад |
 | SUSE-SU-2025:02516-1 Security update for ovmf | 0% Низкий | 4 месяца назад | |
| SUSE-SU-2024:4088-1 Security update for ovmf | 0% Низкий | 12 месяцев назад | |
| GHSA-xvcj-qw55-xx42 EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability. | CVSS3: 6 | 0% Низкий | больше 1 года назад |
| BDU:2025-12007 Уязвимость компонента FirmwarePerformancePei.c среды с открытым исходным кодом для разработки UEFI EDK2, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6 | 0% Низкий | больше 1 года назад |
| GHSA-fxqf-p2p3-gxvr EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality. | CVSS3: 5.3 | 0% Низкий | почти 2 года назад |
| BDU:2024-00626 Уязвимость функции NetRandomInitSeed() библиотеки Tianocore edk2, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации или вызвать отказ в обслуживании | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
| ROS-20251016-03 Уязвимость edk2-tools | CVSS3: 6 | 0% Низкий | около 1 месяца назад |
 | RLSA-2024:9088 Moderate: edk2 security update | 8 месяцев назад |
Уязвимостей на страницу