CVE/CVE-2025-3052

From Omnia

Revision as of 00:33, 14 November 2025 by Kenneth (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

CVE-2025-3052 – UEFI Secure Boot Bypass Vulnerability

What is CVE-2025-3052?
CVE-2025-3052 is an arbitrary write vulnerability in UEFI firmware applications signed by Microsoft (e.g., DTBios, BiosFlashShell).  It allows attackers to manipulate NVRAM variables and bypass Secure Boot, enabling execution of unauthorized code during system startup.

Check-UEFISecureBootVariables

cjee21/Check-UEFISecureBootVariables: PowerShell scripts to check the UEFI KEK, DB and DBX Secure Boot variables.
https://github.com/cjee21/Check-UEFISecureBootVariables

Get-SecureBootUEFI
https://learn.microsoft.com/en-us/powershell/module/secureboot/get-securebootuefi?view=windowsserver2025-ps

keywords

Retrieved from "https://aznot.com/index.php?title=CVE/CVE-2025-3052&oldid=9102"