VDB

DEBIAN-CVE-2024-1298

DEBIAN-CVE-2024-1298 PUBLISHED CVSS 6 MEDIUM

EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.

Risk Scores

CVSS 3.1
6
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:13edk20, 0, 0
Debian:14edk20, 0, 0
Debian:11edk20, 2020.11-2+deb11u1, 2020.11-2+deb11u2
Debian:12edk20, *, 0

Timeline

  • May 30, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›