GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
No history.
Information
Published : 2020-07-29 18:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-15705
Mitre link : CVE-2020-15705
CVE.ORG link : CVE-2020-15705
JSON object : View
Products Affected
redhat
- enterprise_linux_atomic_host
- enterprise_linux
- openshift_container_platform
opensuse
- leap
microsoft
- windows_8.1
- windows_server_2019
- windows_server_2012
- windows_10
- windows_server_2016
- windows_rt_8.1
debian
- debian_linux
suse
- suse_linux_enterprise_server
gnu
- grub2
canonical
- ubuntu_linux
CWE
CWE-347
Improper Verification of Cryptographic Signature