Lucene search
PRIOn knowledge basePRION:CVE-2018-3968HistoryMar 21, 2019 - 5:29 p.m.
Format string
2019-03-2117:29:00
PRIOn knowledge base
www.prio-n.com
3
An exploitable vulnerability exists in the verified boot protection of the Das U-Boot from version 2013.07-rc1 to 2014.07-rc2. The affected versions lack proper FIT signature enforcement, which allows an attacker to bypass U-Boot’s verified boot and execute an unsigned kernel, embedded in a legacy image format. To trigger this vulnerability, a local attacker needs to be able to supply the image to boot.
| CPE | Name | Operator | Version |
|---|---|---|---|
| u-boot | eq | 2013.7 rc1 | |
| u-boot | eq | 2013.7 rc2 | |
| u-boot | eq | 2013.7 rc3 | |
| u-boot | ge | 2013.07 | |
| u-boot | le | 2014.07 | |
| u-boot | eq | 2014.7 rc1 | |
| u-boot | eq | 2014.7 rc2 |
Related
debiancve
debiancve
CVE-2018-3968
2019-03-21 17:29:00
cvelist
cvelist
CVE-2018-3968
2019-03-21 16:36:03
talos
talos
Das U-Boot verified boot bypass
2019-03-19 00:00:00
cve
cve
CVE-2018-3968
2019-03-21 17:29:00
osv
osv
CVE-2018-3968
2019-03-21 17:29:00
nvd
nvd
CVE-2018-3968
2019-03-21 17:29:00
ubuntucve
ubuntucve
CVE-2018-3968
2019-03-21 00:00:00
threatpost
threatpost
Host of Flaws Found in CUJO Smart Firewall
2019-03-19 21:43:08
talosblog
talosblog