Tianocore Edk2 Vulnerabilities

Improper Input Validation in EDK2 by Tianocore

CVE-2025-2296

TianocoreEdk28.4HIGH

Sensitive Information Exposure in BIOS by EDK2 Software from TianoCore

CVE-2024-38798

TianocoreEdk25.8MEDIUM

EDK2 BIOS Integer Overflow Vulnerability by TianoCore

CVE-2024-38805

TianocoreEdk26.3MEDIUM

BIOS Vulnerability in EDK2 by Tianocore Impacting Security Mechanisms

CVE-2025-3770

TianocoreEdk27HIGH

Out of Bounds Read Vulnerability in EDK2 by TianoCore

CVE-2024-38797

TianocoreEdk24.6MEDIUM

Integer Overflow Vulnerability in EDK2 BIOS by TianoCore

CVE-2025-2295

TianocoreEdk2👾📰3.5LOW

Memory Corruption Vulnerability in EDK2's PeCoffLoaderRelocateImage Could Lead to Loss of Confidentiality, Integrity, and Availability

CVE-2024-38796

TianocoreEdk25.9MEDIUM

EDK2 Vulnerability: Division-By-Zero via Local Access

CVE-2024-1298

TianocoreEdk26MEDIUM

Buffer Overflow in EDK II Network Package

CVE-2023-45234

TianocoreEdk28.3HIGH

Infinite loop in EDK II Network Package

CVE-2023-45233

TianocoreEdk27.5HIGH

Infinite loop in EDK II Network Package

CVE-2023-45232

TianocoreEdk27.5HIGH

Buffer Overflow in EDK II Network Package

CVE-2023-45235

TianocoreEdk28.3HIGH

Use of a Weak PseudoRandom Number Generator in EDK II Network Package

CVE-2023-45237

TianocoreEdk25.3MEDIUM

Predictable TCP ISNs in EDK II Network Package

CVE-2023-45236

TianocoreEdk25.8MEDIUM

Out-of-Bounds Read in EDK II Network Package

CVE-2023-45231

TianocoreEdk26.5MEDIUM

Buffer Overflow in EDK II Network Package

CVE-2023-45230

TianocoreEdk28.3HIGH

Out-of-Bounds Read in EDK II Network Package

CVE-2023-45229

TianocoreEdk26.5MEDIUM

Heap Buffer Overflow in Tcg2MeasureGptTable

CVE-2022-36763

TianocoreEdk27HIGH

Heap Buffer Overflow in Tcg2MeasurePeImage

CVE-2022-36764

TianocoreEdk27HIGH

Integer Overflow in CreateHob

CVE-2022-36765

TianocoreEdk27HIGH

Null Pointer Dereference in Tianocore EDK2 Affects Local User Privileges

CVE-2019-14584

TianocoreTianocore Edk27.8HIGH

Buffer Overflow Risk in Tianocore EDK2 by Intel

CVE-2014-8271

TianocoreEdk26.8MEDIUM

tianocore Edk2 Vulnerabilities

Vulnerability Published:

Sort By:

9 December 2025

Improper Input Validation in EDK2 by Tianocore

Sensitive Information Exposure in BIOS by EDK2 Software from TianoCore

12 August 2025

EDK2 BIOS Integer Overflow Vulnerability by TianoCore

7 August 2025

BIOS Vulnerability in EDK2 by Tianocore Impacting Security Mechanisms

7 April 2025

Out of Bounds Read Vulnerability in EDK2 by TianoCore

14 March 2025

Integer Overflow Vulnerability in EDK2 BIOS by TianoCore

27 September 2024

Memory Corruption Vulnerability in EDK2's PeCoffLoaderRelocateImage Could Lead to Loss of Confidentiality, Integrity, and Availability

30 May 2024

EDK2 Vulnerability: Division-By-Zero via Local Access

16 January 2024

Buffer Overflow in EDK II Network Package

Infinite loop in EDK II Network Package

Infinite loop in EDK II Network Package

Buffer Overflow in EDK II Network Package

Use of a Weak PseudoRandom Number Generator in EDK II Network Package

Predictable TCP ISNs in EDK II Network Package

Out-of-Bounds Read in EDK II Network Package

Buffer Overflow in EDK II Network Package

Out-of-Bounds Read in EDK II Network Package

9 January 2024

Heap Buffer Overflow in Tcg2MeasureGptTable

Heap Buffer Overflow in Tcg2MeasurePeImage

Integer Overflow in CreateHob

3 June 2021

Null Pointer Dereference in Tianocore EDK2 Affects Local User Privileges

6 February 2020

Buffer Overflow Risk in Tianocore EDK2 by Intel