CVE-2020-3284

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

CVE-2020-3284

Cisco IOS XR 64-bit devices are affected by CVE-2020-3284 due to a vulnerability in the enhanced PXE boot loader. The issue arises because internal commands during the PXE network boot process are not properly verified, allowing an unauthenticated, remote attacker to execute unsigned code if they...

CVE-2020-3284 Cisco IOS XR Software Enhanced Preboot eXecution Environment Unsigned Code Execution Vulnerability

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

Cisco IOS XR RCE (cisco-sa-iosxr-pxe-unsign-code-exec-qAa78fD2)

According to its self-reported version, IOS-XR is affected by a remote code execution vulnerability in the enhanced Preboot eXecution Environment PXE boot loader due to a failure to verify commands issued during a network boot. An unauthenticated, remote attacker can exploit this to execute...

CVE-2019-10562

u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon...

CVE-2019-10562

u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon...

CVE-2019-10562

CVE-2019-10562 affects Qualcomm Snapdragon families (including IPQ6018, MSM CPUs) with an improper authentication and signature verification of debug policies in the secure boot loader. The root cause is insecure policy loading into secure memory, leading to memory corruption and potential local ...

PT-2020-9078 · Qualcomm · Ipq6018 +34

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions affected versions not specified Description: The issue is related to improper authentication and signature verification of debug policies in the secure boot loader, which allows unverified debug policies to be...

The vulnerability of Grub2 operating system loaders, related to operations occurring outside the data buffer, allows attackers to influence data integrity or cause service failures.

The vulnerability of Grub2 operating system loaders is related to the issue of operations going beyond the data buffer when processing symbolic links. Exploiting this vulnerability can allow an attacker to influence the integrity of data or cause service failures...

grub2: Fail kernel validation without shim protocol

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim...

Moderate: Red Hat Security Advisory: grub2 security and bug fix update

An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

AZL-6457 CVE-2020-14309 affecting package grub2 for versions less than 2.06~rc1-7

There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacke...

grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process

A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access...

Moderate: Red Hat Security Advisory: grub2 security and bug fix update

An update for grub2, shim, shim-signed, and fwupdate is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Moderate: Red Hat Security Advisory: grub2 security update

An update for grub2, shim, shim-unsigned-x64, and fwupd is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Microsoft security advisory: Update to revoke noncompliant UEFI boot loader modules

Microsoft security advisory: Update to revoke noncompliant UEFI boot loader modules INTRODUCTION Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, visit...

Privilege Escalation

xen is vulnerable to privilege escalation. The vulnerability exists as the pyGrub boot loader did not honor the "password" option in the grub.conf file for para-virtualized guests. Users with access to a guest's console could use this flaw to bypass intended access restrictions and boot the guest...

Improper access control

Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networkin...

CVE-2019-2267

Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networkin...

CVE-2019-2267

Summary: CVE-2019-2267 affects Qualcomm closed‑source components in Snapdragon platforms (Auto, Compute, Connectivity, Mobile, etc.). The issue is caused by improper access control that allows locked regions to be modified via other interfaces in the secure boot loader image. This could impact bo...