vulnerability
CentOS Linux: CVE-2019-14584: Moderate: edk2 security, bug fix, and enhancement update (CESA-2021:4198)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Jun 3, 2021 | Oct 27, 2023 | Oct 27, 2023 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Jun 3, 2021
Added
Oct 27, 2023
Modified
Oct 27, 2023
Description
Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Solution
centos-upgrade-edk2-ovmf
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.