CVE-2019-14587
published 2020-11-23CVE-2019-14587: Logic issue EDK II may allow an unauthenticated user to potentially enable denial of service via adjacent access.
medium6.5CVSS 3.1
AVAACLPRNUINSUCNINAH
Logic issue EDK II may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | edk2 | < edk2 0~20200229.4c0f6e34-1 (bookworm) | edk2 0~20200229.4c0f6e34-1 (bookworm) |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20160408.ffea0a2c-2ubuntu0.1 | 0~20160408.ffea0a2c-2ubuntu0.1 |
| tianocore | edk2 | >= 0 < 0~20180205.c0d9813c-2ubuntu0.2 | 0~20180205.c0d9813c-2ubuntu0.2 |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv9.1CRITICAL