Main Vulnerability Database Vulnerabilities #VU119803

#VU119803 Protection mechanism failure in edk2 - CVE-2025-2296

Published: December 10, 2025

Vulnerability identifier: #VU119803

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-2296

CWE-ID: CWE-693

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
edk2

Software vendor:
TianoCore

Description

The vulnerability allows an attacker to bypass Secure Boot protections.

The vulnerability exists due to insufficient implementation of security measures in direct boot mode. If signature of Linux kernel is not in the DB, DxeImageVerification returns EFI_ACCESS_DENIED, however it falls back to the legacy loader allowing to bypass the secure boot mechanism. An attacker with physical access to the system can bypass secure boot feature and load an untrusted image.

Remediation

Install updates from vendor's website.

External links

https://github.com/tianocore/edk2/security/advisories/GHSA-6pp6-cm5h-86g5

#VU119803 Protection mechanism failure in edk2 - CVE-2025-2296

Description

Remediation

External links

Please verify you're human