REDHAT-BUG-2120701
First published: Tue Aug 23 2022(Updated: )
A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Eurosoft UK UEFI Bootloader | <2022-06-01 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-2120701?
The severity of REDHAT-BUG-2120701 is critical due to the potential for Secure Boot bypass.
How do I fix REDHAT-BUG-2120701?
To fix REDHAT-BUG-2120701, update the Eurosoft bootloader to a version released after 2022-06-01.
What is the impact of REDHAT-BUG-2120701?
The impact of REDHAT-BUG-2120701 allows attackers to load and execute arbitrary code in the pre-boot stage.
Who is affected by REDHAT-BUG-2120701?
Entities using Eurosoft bootloaders released before 2022-06-01 are affected by REDHAT-BUG-2120701.
Is REDHAT-BUG-2120701 publicly known?
Yes, REDHAT-BUG-2120701 is a publicly known vulnerability listed in various security advisories.
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-34303
- agent/severity
- agent/references
- agent/last-modified-date
- agent/type
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/eurosoft
- canonical/eurosoft uk uefi bootloader