Tianocore Edk2

41 CVEs affecting Tianocore Edk2. Latest disclosed: 2025-12-09. Critical: 0, High: 21.

Top CVEs affecting Tianocore Edk2
CVESeverityScorePublishedSummary
CVE-2025-2486High8.82025-11-26The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot…
CVE-2023-45235High8.32024-01-16EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option from a DHCPv6 proxy Advertise message. This …
CVE-2023-45234High8.32024-01-16EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerabilit…
CVE-2023-45230High8.32024-01-16EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by…
CVE-2021-38575High8.12021-12-01NetworkPkg/IScsiDxe has remotely exploitable buffer overflows.
CVE-2019-14586High8.02020-11-23Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of s…
CVE-2021-28210High7.82021-06-11An unlimited recursion in DxeCore in EDK II.
CVE-2019-14584High7.82021-06-03Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2019-14575High7.82020-11-23Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2019-14563High7.82020-11-23Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2017-5731High7.82019-10-28Bounds checking in Tianocompress before November 7, 2017 may allow an authenticated user to potentially enable an escalation of privilege via local access.
CVE-2023-45233High7.52024-01-16EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerabilit…
CVE-2023-45232High7.52024-01-16EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerabi…
CVE-2021-38576High7.52022-01-03A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways…
CVE-2021-28213High7.52021-06-11Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.
CVE-2019-14559High7.52020-11-23Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access.
CVE-2021-38578High7.42022-03-03Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
CVE-2025-3770High7.02025-08-07EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability…
CVE-2022-36765High7.02024-01-09EDK2 is susceptible to a vulnerability in the CreateHob() function, allowing a user to trigger a integer overflow to buffer overflow via a local network. Succe…
CVE-2022-36764High7.02024-01-09EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap buffer overflow via a local network. Successful…