edk2 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the edk2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Out-of-bounds Write	*
L CVE-2021-38576	*
L Release of Invalid Pointer or Reference	*
L Improper Input Validation	*
L Inadequate Encryption Strength	*
L Integer Overflow or Wraparound	*
L Integer Overflow or Wraparound	<0~20180205.c0d9813c-2ubuntu0.3
L NULL Pointer Dereference	<0~20180205.c0d9813c-2ubuntu0.3
L CVE-2019-14560	*
M CVE-2019-14558	<0~20180205.c0d9813c-2ubuntu0.2
M CVE-2019-14587	<0~20180205.c0d9813c-2ubuntu0.2
L Use After Free	<0~20180205.c0d9813c-2ubuntu0.2
L Integer Overflow or Wraparound	<0~20180205.c0d9813c-2ubuntu0.2
L CVE-2019-14575	<0~20180205.c0d9813c-2ubuntu0.2
L Resource Exhaustion	<0~20180205.c0d9813c-2ubuntu0.2
L Use of a Broken or Risky Cryptographic Algorithm	*
M Out-of-Bounds	*
M Out-of-bounds Write	*
M Out-of-Bounds	*
M Out-of-bounds Write	<0~20180205.c0d9813c-2ubuntu0.2
M Out-of-bounds Write	<0~20180205.c0d9813c-2ubuntu0.2
M Out-of-Bounds	<0~20180205.c0d9813c-2ubuntu0.2