Unrated severityNVD Advisory· Published Feb 14, 2024· Updated May 8, 2025
CVE-2023-48733
CVE-2023-48733
Description
An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot.
Affected products
2- Canonical Ltd./Ubuntu EDK IIv5Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- bugs.launchpad.net/ubuntu/+source/edk2/+bug/2040137mitreissue-tracking
- bugs.launchpad.net/ubuntu/+source/lxd/+bug/2040139mitreissue-tracking
- nvd.nist.gov/vuln/detail/CVE-2023-48733mitreissue-tracking
- www.openwall.com/lists/oss-security/2024/02/14/4mitremailing-list
- lists.debian.org/debian-lts-announce/2024/06/msg00028.htmlmitre
News mentions
0No linked articles in our index yet.