Lucene search
CertccCVELIST:CVE-2014-4860HistoryJan 31, 2020 - 3:08 p.m.
CVE-2014-4860
2020-01-3115:08:16
certcc
www.cve.org
2
Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase in the Capsule Update feature in the UEFI implementation in EDK2 allow physically proximate attackers to bypass intended access restrictions by providing crafted data that is not properly handled during the coalescing phase.
CNA Affected
[
{
"product": "SCT3",
"vendor": "Phoenix Technologies Ltd.",
"versions": [
{
"status": "affected",
"version": "before 5/23/2014"
}
]
},
{
"product": "BIOS",
"vendor": "American Megatrends Incorporated (AMI)",
"versions": [
{
"status": "affected",
"version": "unknown"
}
]
}
]References
Related
ubuntucve
ubuntucve
CVE-2014-4860
2020-01-31 00:00:00
debiancve
debiancve
CVE-2014-4860
2020-01-31 16:15:10
nvd
nvd
CVE-2014-4860
2020-01-31 16:15:10
prion
prion
Integer overflow
2020-01-31 16:15:00
cve
cve
CVE-2014-4860
2020-01-31 16:15:10
f5
f5
securityvulns
securityvulns
[security bulletin] HPSBHF03084 rev.1 HP PCs with UEFI Firmware, Execution of Arbitrary Code
2014-08-11 00:00:00
HP desktops and notebooks code execution
2014-08-11 00:00:00
lenovo
lenovo
UEFI EDK2 Capsule Update Vulnerabilities - Lenovo Support US
2016-07-22 00:00:00
UEFI EDK2 Capsule Update Vulnerabilities
2016-07-22 00:00:00
cert
cert
UEFI EDK2 Capsule Update vulnerabilities
2014-08-07 00:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-01 (HT205375)
2018-05-15 00:00:00