VYPR

Vendor CVEs

Tianocore

All CVEs

41 total · sorted by risk
  • CVE-2025-2296HigDec 9, 2025
    risk 0.55cvss epss 0.01

    EDK2 contains a vulnerability in BIOS where an attacker may cause “ Improper Input Validation” by local access. Successful exploitation of this vulnerability could alter control flow in unexpected ways, potentially allowing arbitrary command execution and impacting…

  • CVE-2025-3770HigAug 7, 2025
    risk 0.46cvss 7.0epss 0.00

    EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability.

  • CVE-2024-38805MedAug 12, 2025
    risk 0.41cvss 6.3epss 0.00

    EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service.

  • CVE-2024-1298MedMay 30, 2024
    risk 0.39cvss 6.0epss 0.00

    EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.

  • CVE-2024-38798MedDec 9, 2025
    risk 0.38cvss epss 0.00

    EDK2 contains a vulnerability in BIOS where an attacker may cause “Exposure of Sensitive Information to an Unauthorized Actor” by local access. Successful exploitation of this vulnerability will lead to possible information disclosure or escalation of privilege and…

  • CVE-2024-38796MedSep 27, 2024
    risk 0.38cvss 5.9epss 0.00

    EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.

  • CVE-2024-38797MedApr 7, 2025
    risk 0.30cvss 4.6epss 0.00

    EDK2 contains a vulnerability in the HashPeImageByType(). A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability.

  • CVE-2025-2295LowMar 14, 2025
    risk 0.23cvss 3.5epss 0.00

    EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service.

  • CVE-2025-2486Nov 26, 2025
    risk 0.00cvss epss 0.00

    The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a…

  • CVE-2023-48733Feb 14, 2024
    risk 0.00cvss epss 0.00

    An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot.

  • CVE-2023-45234Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality,…

  • CVE-2023-45233Jan 16, 2024
    risk 0.00cvss epss 0.02

    EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.

  • CVE-2023-45232Jan 16, 2024
    risk 0.00cvss epss 0.02

    EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability.

  • CVE-2023-45235Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option from a DHCPv6 proxy Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of…

  • CVE-2023-45237Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

  • CVE-2023-45236Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

  • CVE-2023-45231Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing  Neighbor Discovery Redirect message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality.

  • CVE-2023-45230Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or…

  • CVE-2023-45229Jan 16, 2024
    risk 0.00cvss epss 0.01

    EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of…

  • CVE-2022-36765Jan 9, 2024
    risk 0.00cvss epss 0.00

    EDK2 is susceptible to a vulnerability in the CreateHob() function, allowing a user to trigger a integer overflow to buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.

  • CVE-2022-36764Jan 9, 2024
    risk 0.00cvss epss 0.00

    EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.

  • CVE-2022-36763Jan 9, 2024
    risk 0.00cvss epss 0.00

    EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.

  • CVE-2021-38578Mar 3, 2022
    risk 0.00cvss epss 0.01

    Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

  • CVE-2021-38576Jan 3, 2022
    risk 0.00cvss epss 0.01

    A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.

  • CVE-2021-38575Dec 1, 2021
    risk 0.00cvss epss 0.02

    NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.

  • CVE-2021-28216Aug 5, 2021
    risk 0.00cvss epss 0.00

    BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.

  • CVE-2021-28211Jun 11, 2021
    risk 0.00cvss epss 0.00

    A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.

  • CVE-2021-28213Jun 11, 2021
    risk 0.00cvss epss 0.01

    Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.

  • CVE-2021-28210Jun 11, 2021
    risk 0.00cvss epss 0.00

    An unlimited recursion in DxeCore in EDK II.

  • CVE-2019-14584Jun 3, 2021
    risk 0.00cvss epss 0.00

    Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2019-14587Nov 23, 2020
    risk 0.00cvss epss 0.01

    Logic issue EDK II may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2019-14586Nov 23, 2020
    risk 0.00cvss epss 0.01

    Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.

  • CVE-2019-14575Nov 23, 2020
    risk 0.00cvss epss 0.00

    Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2019-14563Nov 23, 2020
    risk 0.00cvss epss 0.00

    Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2019-14562Nov 23, 2020
    risk 0.00cvss epss 0.00

    Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2019-14559Nov 23, 2020
    risk 0.00cvss epss 0.01

    Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2014-8271Feb 6, 2020
    risk 0.00cvss epss 0.00

    Buffer overflow in the Reclaim function in Tianocore EDK2 before SVN 16280 allows physically proximate attackers to gain privileges via a long variable name.

  • CVE-2019-0161Mar 27, 2019
    risk 0.00cvss epss 0.00

    Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial of service via local access.

  • CVE-2018-12180Mar 27, 2019
    risk 0.00cvss epss 0.02

    Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.

  • CVE-2019-0160Mar 27, 2019
    risk 0.00cvss epss 0.01

    Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access.

  • CVE-2018-12178Mar 27, 2019
    risk 0.00cvss epss 0.02

    Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network.