CVE-2018-12182
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2018-12182
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-12182.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2018-12182
- Related
- Withdrawn
- 2024-06-30T13:40:12.347976Z
- Published
- 2019-03-27T20:29:03Z
- Modified
- 2024-05-09T07:09:29.507315Z
- Severity
-
- 6.7 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.
- References
-
- https://edk2-docs.gitbooks.io/security-advisory/content/sw-smi-confused-deputy-smramsavestate_c.html
- http://www.securityfocus.com/bid/107648
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TQYVZRFEXSN3KS43AVH4D7QX553EZQYP/
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03912en_us
Affected packages
Debian:10 / edk2
Package
- Name
- edk2
- Purl
- pkg:deb/debian/edk2?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0~20181115.*
0~20181115.85588389-3
0~20181115.85588389-3+deb10u1
0~20181115.85588389-3+deb10u2
0~20181115.85588389-3+deb10u3
0~20190309.*
0~20190309.89910a39-1
0~20190606.*
0~20190606.20d2e5a1-1
0~20190606.20d2e5a1-2
0~20190606.20d2e5a1-3
0~20190606.20d2e5a1-4
0~20190828.*
0~20190828.37eef910-2
0~20190828.37eef910-3
0~20190828.37eef910-4
0~20191122.*
0~20191122.bd85bf54-1
0~20191122.bd85bf54-2
0~20200229.*
0~20200229.4c0f6e34-1
0.*
0.0~20200229-1
0.0~20200229-2~bpo10+1
0.0~20200229-2
2020.*
2020.05-1
2020.05-2
2020.05-3~bpo+1
2020.05-3
2020.05-4
2020.05-5
2020.08-1
2020.11-1
2020.11-2
2020.11-3
2020.11-4
2020.11-5
2021.*
2021.02-1
2021.05-1
2021.08~rc0-1
2021.08~rc0-2
2021.08-1
2021.08-2
2021.08-3
2021.11~rc1-1
2021.11-1
2021.11-2
2022.*
2022.02~rc1-1
2022.02-1
2022.02-2
2022.02-3
2022.05~rc1-1
2022.05-1
2022.05-2
2022.05-3
2022.05-4
2022.08-1
2022.11-1
2022.11-2
2022.11-3
2022.11-4
2022.11-5
2022.11-6
2023.*
2023.02-1
2023.02-2
2023.05-1
2023.05-2
2023.08-1
2023.11-1
2023.11-2
2023.11-3
2023.11-4
2023.11-5
2023.11-6
2023.11-7
2023.11-8
2024.*
2024.02-1
2024.02-2