2 matches found
CVE-2023-43636 Rootfs Not Protected
In EVE OS, the “measured boot” mechanism prevents a compromised device from accessing the encrypted data located in the vault. As per the “measured boot” design, the PCR values calculated at different stages of the boot process will change if any of their respective parts are changed. This...
CVE-2023-43636
Summary: CVE-2023-43636 concerns EVE OS measured boot not validating the entire root filesystem (rootfs). The PCR-based attestation covers BIOS/GRUB/kernel cmdline/initrd but not the complete rootfs, allowing an attacker to alter the squashfs root image and gain control without triggering attesta...