CVE-2025-45512

Опубликовано: 05 авг. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

A lack of signature verification in the bootloader of DENX Software Engineering Das U-Boot (U-Boot) v1.1.3 allows attackers to install crafted firmware files, leading to arbitrary code execution.

Ссылки

https://gist.github.com/AzhariRamadhan/a5c9644861f46b1eadb1f2a15c7950fe
Exploit
Third Party Advisory
https://github.com/AzhariRamadhan/uboot-cve
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:denx:u-boot:1.1.3:*:*:*:*:*:*:*

EPSS

Процентиль: 28%

0.00104

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-77

Связанные уязвимости

CVE-2025-45512

CVSS3: 6.5

ubuntu

8 месяцев назад

A lack of signature verification in the bootloader of DENX Software Engineering Das U-Boot (U-Boot) v1.1.3 allows attackers to install crafted firmware files, leading to arbitrary code execution.

CVE-2025-45512

CVSS3: 6.5

debian

8 месяцев назад

A lack of signature verification in the bootloader of DENX Software En ...

GHSA-xw32-c3jc-v6qh

CVSS3: 6.5

github

8 месяцев назад

A lack of signature verification in the bootloader of DENX Software Engineering Das U-Boot (U-Boot) v1.1.3 allows attackers to install crafted firmware files, leading to arbitrary code execution.

EPSS

Процентиль: 28%

0.00104

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-77