Configuration in oracleasm-kmp-default - #VU73906
Published: March 21, 2023
Vulnerability identifier: #VU73906
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: N/A
CWE-ID: CWE-16
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
oracleasm-kmp-default
oracleasm-kmp-default
Software vendor:
SUSE
SUSE
Description
The issue may allow a local user to bypass implemented security restrictions.
The issue exists due to the possibility to bypass implemented security restrictions, related to secure boot. it was addressed by rebuilding the package with the new secure boot key.
Remediation
Install updates from vendor's website.