Уязвимость CVE-2022-28735

CVE-2022-28735

CVSS3: 6.7

ubuntu

почти 2 года назад

The GRUB2's shim_lock verifier allows non-kernel files to be loaded on shim-powered secure boot systems. Allowing such files to be loaded may lead to unverified code and modules to be loaded in GRUB2 breaking the secure boot trust-chain.

CVE-2022-28735

CVSS3: 7.8

redhat

около 3 лет назад

The GRUB2's shim_lock verifier allows non-kernel files to be loaded on shim-powered secure boot systems. Allowing such files to be loaded may lead to unverified code and modules to be loaded in GRUB2 breaking the secure boot trust-chain.

CVE-2022-28735

CVSS3: 6.7

nvd

почти 2 года назад

The GRUB2's shim_lock verifier allows non-kernel files to be loaded on shim-powered secure boot systems. Allowing such files to be loaded may lead to unverified code and modules to be loaded in GRUB2 breaking the secure boot trust-chain.

CVE-2022-28735

CVSS3: 6.7

debian

почти 2 года назад

The GRUB2's shim_lock verifier allows non-kernel files to be loaded on ...

GHSA-w8wh-9mrg-3ff5

CVSS3: 6.7

github

почти 2 года назад

The GRUB2's shim_lock verifier allows non-kernel files to be loaded on shim-powered secure boot systems. Allowing such files to be loaded may lead to unverified code and modules to be loaded in GRUB2 breaking the secure boot trust-chain.

exploitDog

CVE-2022-28735

Описание

Возможность эксплуатации

Связанные уязвимости