| Bug | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2025-2295 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | EDK2 contains a vulnerability in BIOS where a user may cause an Intege ... |
| CVE-2024-38797 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | EDK2 contains a vulnerability in the HashPeImageByType(). A user may c ... |
| CVE-2023-45237 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | EDK2's Network Package is susceptible to a predictable TCP Initial Seq ... |
| CVE-2023-45236 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | EDK2's Network Package is susceptible to a predictable TCP Initial Seq ... |
| Bug | Description |
|---|
| CVE-2024-38796 | EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An A ... |
| CVE-2024-1298 | EDK2 contains a vulnerability when S3 sleep is activated where an Atta ... |
| CVE-2023-48733 | An insecure default to allow UEFI Shell in EDK2 was left enabled in Ub ... |
| CVE-2023-45235 | EDK2's Network Package is susceptible to a buffer overflow vulnerabili ... |
| CVE-2023-45234 | EDK2's Network Package is susceptible to a buffer overflow vulnerabili ... |
| CVE-2023-45233 | EDK2's Network Package is susceptible to an infinite lop vulnerability ... |
| CVE-2023-45232 | EDK2's Network Package is susceptible to an infinite loop vulnerabilit ... |
| CVE-2023-45231 | EDK2's Network Package is susceptible to an out-of-bounds read vulner ... |
| CVE-2023-45230 | EDK2's Network Package is susceptible to a buffer overflow vulnerabili ... |
| CVE-2023-45229 | EDK2's Network Package is susceptible to an out-of-bounds read vulner ... |
| CVE-2022-36765 | EDK2 is susceptible to a vulnerability in the CreateHob() function, al ... |
| CVE-2022-36764 | EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() fun ... |
| CVE-2022-36763 | EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() fu ... |
| CVE-2021-38578 | Existing CommBuffer checks in SmmEntryPoint will not catch underflow w ... |
| CVE-2021-38576 | A BIOS bug in firmware for a particular PC model leaves the Platform a ... |
| CVE-2021-38575 | NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. |
| CVE-2021-28216 | BootPerformanceTable pointer is read from an NVRAM variable in PEI. Re ... |
| CVE-2021-28213 | Example EDK2 encrypted private key in the IpSecDxe.efi present potenti ... |
| CVE-2021-28211 | A heap overflow in LzmaUefiDecompressGetInfo function in EDK II. |
| CVE-2021-28210 | An unlimited recursion in DxeCore in EDK II. |
| CVE-2019-14587 | Logic issue EDK II may allow an unauthenticated user to potentially en ... |
| CVE-2019-14586 | Use after free vulnerability in EDK II may allow an authenticated user ... |
| CVE-2019-14584 | Null pointer dereference in Tianocore EDK2 may allow an authenticated ... |
| CVE-2019-14575 | Logic issue in DxeImageVerificationHandler() for EDK II may allow an a ... |
| CVE-2019-14563 | Integer truncation in EDK II may allow an authenticated user to potent ... |
| CVE-2019-14562 | Integer overflow in DxeImageVerificationHandler() EDK II may allow an ... |
| CVE-2019-14559 | Uncontrolled resource consumption in EDK II may allow an unauthenticat ... |
| CVE-2019-14558 | Insufficient control flow management in BIOS firmware for 8th, 9th, 10 ... |
| CVE-2019-14553 | Improper authentication in EDK II may allow a privileged user to poten ... |
| CVE-2019-11098 | Insufficient input validation in MdeModulePkg in EDKII may allow an un ... |
| CVE-2019-0161 | Stack overflow in XHCI for EDK II may allow an unauthenticated user to ... |
| CVE-2019-0160 | Buffer overflow in system firmware for EDK II may allow unauthenticate ... |
| CVE-2018-12183 | Stack overflow in DxeCore for EDK II may allow an unauthenticated user ... |
| CVE-2018-12182 | Insufficient memory write check in SMM service for EDK II may allow an ... |
| CVE-2018-12181 | Stack overflow in corrupted bmp for EDK II may allow unprivileged user ... |
| CVE-2018-12180 | Buffer overflow in BlockIo service for EDK II may allow an unauthentic ... |
| CVE-2018-12179 | Improper configuration in system firmware for EDK II may allow unauthe ... |
| CVE-2018-12178 | Buffer overflow in network stack for EDK II may allow unprivileged use ... |
| CVE-2014-4860 | Multiple integer overflows in the Pre-EFI Initialization (PEI) boot ph ... |
| CVE-2014-4859 | Integer overflow in the Drive Execution Environment (DXE) phase in the ... |