Tianocore Edk2
41 CVEs affecting Tianocore Edk2. Latest disclosed: 2025-12-09. Critical: 0, High: 21.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-2486 | High | 8.8 | 2025-11-26 | The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot… |
CVE-2023-45235 | High | 8.3 | 2024-01-16 | EDK2's Network Package is susceptible to a buffer overflow vulnerability when handling Server ID option from a DHCPv6 proxy Advertise message. This … |
CVE-2023-45234 | High | 8.3 | 2024-01-16 | EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerabilit… |
CVE-2023-45230 | High | 8.3 | 2024-01-16 | EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by… |
CVE-2021-38575 | High | 8.1 | 2021-12-01 | NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. |
CVE-2019-14586 | High | 8.0 | 2020-11-23 | Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of s… |
CVE-2021-28210 | High | 7.8 | 2021-06-11 | An unlimited recursion in DxeCore in EDK II. |
CVE-2019-14584 | High | 7.8 | 2021-06-03 | Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access. |
CVE-2019-14575 | High | 7.8 | 2020-11-23 | Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access. |
CVE-2019-14563 | High | 7.8 | 2020-11-23 | Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access. |
CVE-2017-5731 | High | 7.8 | 2019-10-28 | Bounds checking in Tianocompress before November 7, 2017 may allow an authenticated user to potentially enable an escalation of privilege via local access. |
CVE-2023-45233 | High | 7.5 | 2024-01-16 | EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerabilit… |
CVE-2023-45232 | High | 7.5 | 2024-01-16 | EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This vulnerabi… |
CVE-2021-38576 | High | 7.5 | 2022-01-03 | A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways… |
CVE-2021-28213 | High | 7.5 | 2021-06-11 | Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks. |
CVE-2019-14559 | High | 7.5 | 2020-11-23 | Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access. |
CVE-2021-38578 | High | 7.4 | 2022-03-03 | Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. |
CVE-2025-3770 | High | 7.0 | 2025-08-07 | EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability… |
CVE-2022-36765 | High | 7.0 | 2024-01-09 | EDK2 is susceptible to a vulnerability in the CreateHob() function, allowing a user to trigger a integer overflow to buffer overflow via a local network. Succe… |
CVE-2022-36764 | High | 7.0 | 2024-01-09 | EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap buffer overflow via a local network. Successful… |