CVE-2018-12181
Description
Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access.
Risk Information
Base Score
6.0
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
EPSS Score
Exploitation Probability
0.139
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2019:0766-1(SUSE Linux Enterprise Desktop 12-SP4 ) qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.13.1.noarch.rpm | Linux |
| (RHSA-2019:2125) ovmf security and enhancement update OVMF-20180508-6.gitee3198e672e2.el7.noarch.rpm | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) ovmf_0~20160408.ffea0a2c-2ubuntu0.1_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) ovmf_0~20180205.c0d9813c-2ubuntu0.2_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) ovmf_0~20190606.20d2e5a1-2ubuntu1.1_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) qemu-efi_0~20160408.ffea0a2c-2ubuntu0.1_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) qemu-efi-arm_0~20180205.c0d9813c-2ubuntu0.2_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) qemu-efi-arm_0~20190606.20d2e5a1-2ubuntu1.1_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) qemu-efi-aarch64_0~20180205.c0d9813c-2ubuntu0.2_all.deb | Linux |
| UEFI firmware for 64-bit x86 virtual machines (USN-4349-1) qemu-efi-aarch64_0~20190606.20d2e5a1-2ubuntu1.1_all.deb | Linux |
| (CESA-2019:2125) ovmf security and enhancement update OVMF-20180508-6.gitee3198e672e2.el7.noarch.rpm | Linux |
| OVMF update (ELSA-2019-2125) OVMF-20180508-6.gitee3198e672e2.el7.noarch.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234