Back to daemsc's feed

VU#616257: Microsoft-signed UEFI shim bootloaders vulnerable to Secure Boot bypass (opens in new tab)  🖥️OS Development

kb.cert.org··Covered by thehackernews.com·Open original (opens in new tab)

Overview Microsoft-signed UEFI bootloaders of the open-source shim project, primarily from version 0.9 and earlier, were identified as vulnerable to Secure Boot bypass. To mitigate this risk, the affected bootloaders will be added to the Microsoft UEFI Forbidden Signature Database (DBX). Once the DBX update is applied, these bootloaders will no longer be trusted for execution during the boot process. An attacker could exploit these vulnerable shim bootloaders using a Bring Your Own Vulnerable...

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Cited by 1 article

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

thehackernews.com·

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help