rpm package
opensuse/ovmf&distro=openSUSE Leap 15.1
pkg:rpm/opensuse/ovmf&distro=openSUSE%20Leap%2015.1
Vulnerabilities (6)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-14584 | — | < 2017+git1510945757.b2662641d5-lp151.11.12.1 | 2017+git1510945757.b2662641d5-lp151.11.12.1 | Jun 3, 2021 | Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2019-14575 | — | < 2017+git1510945757.b2662641d5-lp151.11.3.1 | 2017+git1510945757.b2662641d5-lp151.11.3.1 | Nov 23, 2020 | Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2019-14563 | — | < 2017+git1510945757.b2662641d5-lp151.11.3.1 | 2017+git1510945757.b2662641d5-lp151.11.3.1 | Nov 23, 2020 | Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2019-14562 | — | < 2017+git1510945757.b2662641d5-lp151.11.9.1 | 2017+git1510945757.b2662641d5-lp151.11.9.1 | Nov 23, 2020 | Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access. | ||
| CVE-2019-14559 | — | < 2017+git1510945757.b2662641d5-lp151.11.3.1 | 2017+git1510945757.b2662641d5-lp151.11.3.1 | Nov 23, 2020 | Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access. | ||
| CVE-2019-14553 | — | < 2017+git1510945757.b2662641d5-lp151.11.3.1 | 2017+git1510945757.b2662641d5-lp151.11.3.1 | Nov 23, 2020 | Improper authentication in EDK II may allow a privileged user to potentially enable information disclosure via network access. |
- CVE-2019-14584Jun 3, 2021affected < 2017+git1510945757.b2662641d5-lp151.11.12.1fixed 2017+git1510945757.b2662641d5-lp151.11.12.1
Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2019-14575Nov 23, 2020affected < 2017+git1510945757.b2662641d5-lp151.11.3.1fixed 2017+git1510945757.b2662641d5-lp151.11.3.1
Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2019-14563Nov 23, 2020affected < 2017+git1510945757.b2662641d5-lp151.11.3.1fixed 2017+git1510945757.b2662641d5-lp151.11.3.1
Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2019-14562Nov 23, 2020affected < 2017+git1510945757.b2662641d5-lp151.11.9.1fixed 2017+git1510945757.b2662641d5-lp151.11.9.1
Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2019-14559Nov 23, 2020affected < 2017+git1510945757.b2662641d5-lp151.11.3.1fixed 2017+git1510945757.b2662641d5-lp151.11.3.1
Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access.
- CVE-2019-14553Nov 23, 2020affected < 2017+git1510945757.b2662641d5-lp151.11.3.1fixed 2017+git1510945757.b2662641d5-lp151.11.3.1
Improper authentication in EDK II may allow a privileged user to potentially enable information disclosure via network access.