VDB
DEBIAN-CVE-2024-1298
DEBIAN-CVE-2024-1298
PUBLISHED
CVSS 6 MEDIUM
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
Risk Scores
CVSS 3.1
6
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | edk2 | 0, 0, 0 |
| Debian:14 | edk2 | 0, 0, 0 |
| Debian:11 | edk2 | 0, 2020.11-2+deb11u1, 2020.11-2+deb11u2 |
| Debian:12 | edk2 | 0, *, 0 |
Timeline
- May 30, 2024 CVE Published
- Apr 28, 2026 CVE Updated