Tianocore Edk Ii vulnerabilities

CVE-2021-38578 [CRITICAL] CWE-124 CVE-2021-38578: Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

CVE-2021-38576 [HIGH] CVE-2021-38576: A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, as well as to non-permanently DoS the system.

CVE-2021-38575 [HIGH] CWE-124 CVE-2021-38575: NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.

CVE-2021-28216 [HIGH] CWE-587 CVE-2021-28216: BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePer BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.

CVE-2021-28213 [HIGH] CVE-2021-28213: Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks. Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.

CVE-2021-28211 [MEDIUM] CWE-122 CVE-2021-28211: A heap overflow in LzmaUefiDecompressGetInfo function in EDK II. A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.

CVE-2018-3613 [HIGH] CVE-2018-3613: Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.