CVE-2018-3613

Summary

Logic issue in variable service module for EDK II/UDK2018/UDK2017/UDK2015 may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.

Affected Software

VendorProductVersion RangeStatus
Extensible Firmware Interface Development Kit (EDK II)Extensible Firmware Interface Development Kit (EDK II)N/Aaffected

Weaknesses

  • Escalation of Privilege, Information Disclosure and/or Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References