Description
Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the operating system loads. Specific UEFI DBX update is required to block these vulnerable boot loaders.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- baramundi software / baramundi Management Suite2024R1
- Blancco UK / WhiteCanyon WipeDrive8.0.0 – 8.1.3
- Finland Matriculation Board / Abitti 11.0.0 – 1.0.0
- NTC IT ROSA LLC / RosaLinuxR10 – R10
- NTC IT ROSA LLC / RosaLinuxR9 – R9
- Oracle Corporation / OracleLinux(7.2) shim0.9 – 0.9
- PC-Doctor / Factory for Linux (Bootable Diagnostics)6.9 – 6.20.7710.267
- PC-Doctor / Network Factory for Linux (Bootable Diagnostics)6.9 – 6.20.7711.267
- PC-Doctor / Service Center14 – 17.0.7535.900
- PC-Doctor / Service Center Drive Erase15 – 17.0.7538.592
- PC-Doctor / Service Center Enterprise14 – 17.0.7536.900
- PC-Doctor / Service Center Japan15 – 17.0.7539.904
- Spyrus / WTGCreator4.2 – 4.2
- SUSE Linux / OpenSUSE shim0.9 – 0.9