exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 11

CVE-2019-14560

больше 2 лет назад

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

EPSS: Низкий

CVE-2019-14560

около 5 лет назад

[REJECTED CVE] A secure boot bypass vulnerability was found in EDK2 due to the lack of proper return value checks in the GetEfiGlobalVariable2() function. The API may fail if functions like AllocatePool() or gRT->GetVariable() fail. Without verifying the return value, an attacker could cause the API to fail, potentially bypassing secure boot. This issue occurs in functions like DxeImageVerificationHandler, where the return value is not checked.

CVSS3: 6.1

EPSS: Низкий

CVE-2019-14560

больше 2 лет назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

EPSS: Низкий

ELSA-2023-6919

больше 1 года назад

ELSA-2023-6919: edk2 security and bug fix update (MODERATE)

EPSS: Низкий

SUSE-SU-2023:2234-1

около 2 лет назад

Security update for ovmf

EPSS: Низкий

SUSE-SU-2023:1968-1

больше 2 лет назад

Security update for ovmf

EPSS: Низкий

SUSE-SU-2023:1958-1

больше 2 лет назад

Security update for ovmf

EPSS: Низкий

SUSE-SU-2023:1941-1

больше 2 лет назад

Security update for ovmf

EPSS: Низкий

SUSE-SU-2023:1940-1

больше 2 лет назад

Security update for ovmf

EPSS: Низкий

SUSE-SU-2023:1921-1

больше 2 лет назад

Security update for ovmf

EPSS: Низкий

ELSA-2023-6330

больше 1 года назад

ELSA-2023-6330: edk2 security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	Опубликовано
CVE-2019-14560 REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.		больше 2 лет назад
CVE-2019-14560 [REJECTED CVE] A secure boot bypass vulnerability was found in EDK2 due to the lack of proper return value checks in the GetEfiGlobalVariable2() function. The API may fail if functions like AllocatePool() or gRT->GetVariable() fail. Without verifying the return value, an attacker could cause the API to fail, potentially bypassing secure boot. This issue occurs in functions like DxeImageVerificationHandler, where the return value is not checked.	CVSS3: 6.1	около 5 лет назад
CVE-2019-14560 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.		больше 2 лет назад
ELSA-2023-6919 ELSA-2023-6919: edk2 security and bug fix update (MODERATE)		больше 1 года назад
SUSE-SU-2023:2234-1 Security update for ovmf		около 2 лет назад
SUSE-SU-2023:1968-1 Security update for ovmf		больше 2 лет назад
SUSE-SU-2023:1958-1 Security update for ovmf		больше 2 лет назад
SUSE-SU-2023:1941-1 Security update for ovmf		больше 2 лет назад
SUSE-SU-2023:1940-1 Security update for ovmf		больше 2 лет назад
SUSE-SU-2023:1921-1 Security update for ovmf		больше 2 лет назад
ELSA-2023-6330 ELSA-2023-6330: edk2 security, bug fix, and enhancement update (MODERATE)		больше 1 года назад

Уязвимостей на страницу