exploitDog

CVE-2025-37147

Опубликовано: 14 окт. 2025

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

A Secure Boot Bypass Vulnerability exists in affected Access Points that allows an adversary to bypass the hardware root of trust verification in place to ensure only vendor-signed firmware can execute on the device. An adversary can exploit this vulnerability to run modified or custom firmware on affected Access Points.

Ссылки

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04958en_us&docLocale=en_US

EPSS

Процентиль: 4%

0.00018

Низкий

7.1 High

CVSS3

Дефекты

CWE-290

Связанные уязвимости

GHSA-w4qr-7hmf-8w6r

CVSS3: 7.1

github

4 месяца назад

A Secure Boot Bypass Vulnerability exists in affected Access Points that allows an adversary to bypass the hardware root of trust verification in place to ensure only vendor-signed firmware can execute on the device. An adversary can exploit this vulnerability to run modified or custom firmware on affected Access Points.

EPSS

Процентиль: 4%

0.00018

Низкий

7.1 High

CVSS3

Дефекты

CWE-290