exploitDog

CVE-2023-49721

Опубликовано: 14 фев. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 6.7

Описание

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-apps/focal	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 3%

0.00016

Низкий

6.7 Medium

CVSS3

Связанные уязвимости

CVE-2023-49721

CVSS3: 6.7

nvd

почти 2 года назад

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.

CVE-2023-49721

CVSS3: 6.7

debian

почти 2 года назад

An insecure default to allow UEFI Shell in EDK2 was left enabled in LX ...

GHSA-4639-7gfm-29p2

CVSS3: 6.7

github

почти 2 года назад

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.

EPSS

Процентиль: 3%

0.00016

Низкий

6.7 Medium

CVSS3