Количество 11
Количество 11
CVE-2019-14560
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.
CVE-2019-14560
[REJECTED CVE] A secure boot bypass vulnerability was found in EDK2 due to the lack of proper return value checks in the GetEfiGlobalVariable2() function. The API may fail if functions like AllocatePool() or gRT->GetVariable() fail. Without verifying the return value, an attacker could cause the API to fail, potentially bypassing secure boot. This issue occurs in functions like DxeImageVerificationHandler, where the return value is not checked.
CVE-2019-14560
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.
ELSA-2023-6919
ELSA-2023-6919: edk2 security and bug fix update (MODERATE)
SUSE-SU-2023:2234-1
Security update for ovmf
SUSE-SU-2023:1968-1
Security update for ovmf
SUSE-SU-2023:1958-1
Security update for ovmf
SUSE-SU-2023:1941-1
Security update for ovmf
SUSE-SU-2023:1940-1
Security update for ovmf
SUSE-SU-2023:1921-1
Security update for ovmf
ELSA-2023-6330
ELSA-2023-6330: edk2 security, bug fix, and enhancement update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-14560 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none. | около 3 лет назад | ||
 | CVE-2019-14560 [REJECTED CVE] A secure boot bypass vulnerability was found in EDK2 due to the lack of proper return value checks in the GetEfiGlobalVariable2() function. The API may fail if functions like AllocatePool() or gRT->GetVariable() fail. Without verifying the return value, an attacker could cause the API to fail, potentially bypassing secure boot. This issue occurs in functions like DxeImageVerificationHandler, where the return value is not checked. | CVSS3: 6.1 | больше 5 лет назад | |
 | CVE-2019-14560 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none. | около 3 лет назад | ||
| ELSA-2023-6919 ELSA-2023-6919: edk2 security and bug fix update (MODERATE) | больше 2 лет назад | ||
 | SUSE-SU-2023:2234-1 Security update for ovmf | почти 3 года назад | ||
| SUSE-SU-2023:1968-1 Security update for ovmf | почти 3 года назад | ||
| SUSE-SU-2023:1958-1 Security update for ovmf | почти 3 года назад | ||
| SUSE-SU-2023:1941-1 Security update for ovmf | почти 3 года назад | ||
| SUSE-SU-2023:1940-1 Security update for ovmf | почти 3 года назад | ||
| SUSE-SU-2023:1921-1 Security update for ovmf | почти 3 года назад | ||
| ELSA-2023-6330 ELSA-2023-6330: edk2 security, bug fix, and enhancement update (MODERATE) | больше 2 лет назад |
Уязвимостей на страницу