Unrated severityNVD Advisory· Published Feb 14, 2024· Updated Oct 24, 2024
CVE-2023-49721
CVE-2023-49721
Description
An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.
Affected products
1- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- bugs.launchpad.net/ubuntu/+source/edk2/+bug/2040137mitreissue-tracking
- bugs.launchpad.net/ubuntu/+source/lxd/+bug/2040139mitreissue-tracking
- nvd.nist.gov/vuln/detail/CVE-2023-48733mitreissue-tracking
- www.openwall.com/lists/oss-security/2024/02/14/4mitremailing-list
News mentions
0No linked articles in our index yet.