Security Advisory

CVE-2019-11690

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-05-03 12:07:21

Last updated 2024-08-04 23:03:32

Assigner mitre

State PUBLISHED

Description

gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 lacks an srand call, which allows attackers to determine UUID values in scenarios where CONFIG_RANDOM_UUID is enabled, and Das U-Boot is relied upon for UUID values of a GUID Partition Table of a boot device.

← Browse all CVEs View on cve.org ↗