Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Microsoft CVE
Microsoft CVEadded 2025/12/17 9:5 a.m.5 views

Un-verified kernel bypass Secure Boot mechanism in direct boot mode

...

8.4CVSS7AI score0.0013EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/12/10 8:34 a.m.2 views

CVE-2025-2296

A flaw was found in EDK2 EFI Development Kit 2. This vulnerability allows an attacker to cause arbitrary command execution and impact Confidentiality, Integrity, and Availability via improper input validation by local access. Mitigation To reduce the risk by disabling direct-boot mode, ensuring a...

8.4CVSS6.7AI score0.0013EPSS
Exploits0References4
CVE
CVEadded 2025/12/09 3:0 p.m.10 views

CVE-2025-2296

CVE-2025-2296 affects EDK2 BIOS/edk2 components. The connected docs indicate a vulnerability in improper input validation that could allow arbitrary command execution and impact confidentiality, integrity, and availability, with local access required. Mitigations shown include patch/updated packa...

8.4CVSS6.6AI score0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/09 3:0 p.m.3 views

CVE-2025-2296 Un-verified kernel bypass Secure Boot mechanism in direct boot mode

EDK2 contains a vulnerability in BIOS where an attacker may cause “ Improper Input Validation” by local access. Successful exploitation of this vulnerability could alter control flow in unexpected ways, potentially allowing arbitrary command execution and impacting Confidentiality, Integrity, and...

8.4CVSS6.6AI score0.0013EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/09 3:0 p.m.16 views

CVE-2025-2296 Un-verified kernel bypass Secure Boot mechanism in direct boot mode

EDK2 contains a vulnerability in BIOS where an attacker may cause “ Improper Input Validation” by local access. Successful exploitation of this vulnerability could alter control flow in unexpected ways, potentially allowing arbitrary command execution and impacting Confidentiality, Integrity, and...

8.4CVSS0.0013EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/08/03 12:15 p.m.1 views

grub2: Fail kernel validation without shim protocol

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim...

6.4CVSS7AI score0.00024EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2020/08/03 11:18 a.m.1 views

grub2: Fail kernel validation without shim protocol

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim...

6.4CVSS7AI score0.00024EPSS
Exploits0References4
OSV
OSVadded 2020/07/29 5:0 p.m.0 views

UBUNTU-CVE-2020-15705

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim...

6.4CVSS6.8AI score0.00024EPSS
Exploits0References7
Rows per page
Query Builder