Lucene search
K

59 matches found

NVD
NVD
added 2024/02/14 10:15 p.m.16 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.7AI score0.00256EPSS
Exploits0References5
NVD
NVD
added 2024/02/14 10:15 p.m.13 views

CVE-2023-49721

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.4AI score0.00237EPSS
Exploits0References4
Prion
Prion
added 2024/02/14 10:15 p.m.12 views

Default configuration

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot...

4CVSS7.3AI score0.00256EPSS
Exploits0References4
CVE
CVE
added 2024/02/14 9:57 p.m.53 views

CVE-2023-49721

CVE-2023-49721 describes an insecure default in Ubuntu’s EDK2 firmware where UEFI Shell access was left enabled in LXD, enabling an OS-resident attacker with local access to bypass Secure Boot. Connected documents corroborate a cross-release pattern (Ubuntu edk2 packages) and note remediation in ...

6.7CVSS6.4AI score0.00237EPSS
Exploits0References4Affected Software2
Vulnrichment
Vulnrichment
added 2024/02/14 9:57 p.m.6 views

CVE-2023-49721

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.5AI score0.00237EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2024/02/14 9:57 p.m.4 views

CVE-2023-49721

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS7.2AI score0.00237EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/02/14 9:54 p.m.33 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS7.1AI score0.00256EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/02/14 9:54 p.m.2 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.7AI score0.00256EPSS
Exploits0References5
OSV
OSV
added 2024/02/14 9:54 p.m.7 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.3AI score0.00256EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2024/02/14 9:54 p.m.4 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS7.2AI score0.00256EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/02/14 9:54 p.m.32 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.3AI score0.00256EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.9 views

PT-2024-13784 · Canonical · Lxd

Name of the Vulnerable Software and Affected Versions: LXD affected versions not specified Description: The issue is related to an insecure default setting that allows the UEFI Shell in EDK2, which was left enabled in LXD. This setting enables an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.4AI score0.00256EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2024/02/14 12:0 a.m.11 views

CVE-2023-49721

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.7AI score0.00237EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/02/14 12:0 a.m.25 views

CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS6.8AI score0.00256EPSS
Exploits0References4
OSV
OSV
added 2024/02/14 12:0 a.m.2 views

UBUNTU-CVE-2023-48733

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot...

6.7CVSS5.8AI score0.00256EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/10/23 12:0 a.m.3 views

PT-2023-9359 · Edk2 +3 · Edk2 +3

Name of the Vulnerable Software and Affected Versions: EDK2 versions affected versions not specified Description: The issue is related to an insecure default configuration in EDK2 that allows the UEFI Shell to be enabled, potentially permitting an OS-resident attacker to bypass Secure Boot. This...

8.8CVSS6.6AI score0.02084EPSS
Exploits1References62
Kitploit
Kitploit
added 2018/06/22 10:33 p.m.24 views

CHIPSEC - Platform Security Assessment Framework

CHIPSEC is a framework for analyzing the security of PC platforms including hardware, system firmware BIOS/UEFI, and platform components. It includes a security test suite, tools for accessing various low level interfaces, and forensic capabilities. It can be run on Windows, Linux, Mac OS X and...

7.7AI score
Exploits0References3
Lenovo
Lenovo
added 2018/04/11 3:47 a.m.20 views

BIOS SMI Handler Input Validation Failures - Lenovo Support US

No description provided...

6.8AI score
Exploits0
n0where
n0where
added 2017/03/13 4:15 a.m.105 views

Platform Security Assessment Framework: ChipSec

Platform Security Assessment Framework CHIPSEC is a framework for analyzing security of PC platforms including hardware, system firmware including BIOS/UEFI and the configuration of platform components. It allows creating security test suite, security assessment tools for various low level...

7.5AI score
Exploits0References3
Rows per page
Query Builder