15 matches found
CVE-2025-47827
In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image...
Exploit for CVE-2025-47827
CVE-2025-47827 !GitHub licensehttps://img.shields.io/gith...
GNU GRUB 缓冲区错误漏洞
GNU GRUB is a Linux system boot program from the GNU community. GNU GRUB suffers from a buffer overflow vulnerability, which stems from an integer overflow problem contained in the read module, that can be exploited by an attacker to overwrite sensitive information, thereby bypassing secure boot...
CVE-2024-28896
Secure Boot Security Feature Bypass Vulnerability...
DEBIAN-CVE-2023-48733
An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...
PT-2023-24820 · American Megatrends · Ami Bmc
Name of the Vulnerable Software and Affected Versions: AMI BMC affected versions not specified Description: The issue concerns a vulnerability in the IPMI handler of AMI BMC, allowing an unauthenticated host to write to a host SPI flash and bypass secure boot protections. This could lead to a los...
SUSE CVE-2016-3699
The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd...
CVE-2022-34303
A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use...
Authentication Bypass
grub2 is vulnerable to authentication bypass. The vulnerability exists because the shimlock verifier allows non-kernel files to be loaded on shim-powered secure boot systems, allowing an attacker to load unverified modules into GRUB and bypass secure boot protection mechanism...
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2021-1601)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2020-13626 · Espressif · Esp32
Name of the Vulnerable Software and Affected Versions: ESP32 affected versions not specified Description: The issue concerns bypassing Secure Boot and Flash Encryption on ESP32 chips. It allows extracting decrypted flash data from a fully protected ESP32 chip using chip-level weaknesses, without...
Ubuntu: Security Advisory (USN-3405-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2016-5665 · Red Hat +2 · Red Hat Enterprise Mrg +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 Description: The issue allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd...
SMM "Incursion" Attack
Lenovo Security Advisory: LEN-2015-002 Potential Impact: Execute arbitrary code, Bypass Secure Boot, Denial of Service, Escalation of Privilege Severity: Medium Summary: Some BIOS implementations permit unsafe System Management Mode SMM function calls to memory locations outside of System...
SMM
No description provided...