Known Vulnerabilities for products from TianoCore
Listed below are 20 of the newest known vulnerabilities associated with the vendor "TianoCore".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-45237 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2024-01-16 | 2024-01-23 |
| CVE-2023-45236 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2024-01-16 | 2024-01-23 |
| CVE-2023-45235 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2024-01-16 | 2024-03-13 |
| CVE-2023-45234 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2024-01-16 | 2024-03-13 |
| CVE-2023-45233 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2024-01-16 | 2024-03-13 |
| CVE-2023-45232 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2024-01-16 | 2024-03-13 |
| CVE-2023-45231 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2024-01-16 | 2024-03-13 |
| CVE-2023-45230 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2024-01-16 | 2024-03-13 |
| CVE-2023-45229 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2024-01-16 | 2024-01-23 |
| CVE-2022-36765 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2024-01-09 | 2024-03-13 |
| CVE-2022-36764 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2024-01-09 | 2024-03-13 |
| CVE-2022-36763 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2024-01-09 | 2024-03-13 |
| CVE-2021-38578 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-03-03 | 2023-08-02 |
| CVE-2021-38577 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | Not Provided | 2022-03-03 | 2023-11-07 |
| CVE-2021-38576 json | A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanent... | 7.5 - HIGH | 2022-01-03 | 2022-01-13 |
| CVE-2021-38575 json | NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. | 8.1 - HIGH | 2021-12-01 | 2023-11-07 |
| CVE-2021-28216 json | BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Suppor... | 7.8 - HIGH | 2021-08-05 | 2021-08-16 |
| CVE-2021-28213 json | Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks. | 7.5 - HIGH | 2021-06-11 | 2022-07-12 |
| CVE-2021-28211 json | A heap overflow in LzmaUefiDecompressGetInfo function in EDK II. | 6.7 - MEDIUM | 2021-06-11 | 2021-06-22 |
| CVE-2021-28210 json | An unlimited recursion in DxeCore in EDK II. | 7.8 - HIGH | 2021-06-11 | 2021-06-24 |
Known software with vulnerabilities from TianoCore
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Tianocore | Edk2 | - |