Sign up with Google
- Joined
- Jan 27, 2022
- Messages
- 99
- Reaction score
- 20
Microsoft-approved UEFI bootloaders let attackers execute unauthorised code
Eclypsium security researchers have identified three Microsoft-approved UEFI bootloaders containing bugs allowing attackers to possibly execute unauthorised code before a computer’s operating system loads.
“As part of our continuing research into vulnerable and malicious bootloaders, we have identified three new bootloader vulnerabilities which affect the vast majority of devices released over the past 10 years, including x86-64 and ARM-based devices,” Eclypsium said.
Eclypsium security researchers have identified three Microsoft-approved UEFI bootloaders containing bugs allowing attackers to possibly execute unauthorised code before a computer’s operating system loads.
“As part of our continuing research into vulnerable and malicious bootloaders, we have identified three new bootloader vulnerabilities which affect the vast majority of devices released over the past 10 years, including x86-64 and ARM-based devices,” Eclypsium said.