CVE-2020-26200Improper Authentication in Rescue Disk

CWE-287Improper AuthenticationCWE-863Incorrect Authorization3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
0.0%
top 90.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Kaspersky Rescue DiskKaspersky Endpoint Security
Timeline
PublishedFeb 26
Latest updateMay 24

Description

A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). This issue allowed to bypass the UEFI Secure Boot security feature. An attacker would need physical access to the computer to exploit it. Otherwise, local administrator privileges would be required

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 0.9 | Impact: 5.9

Affected Packages2 packages

NVDkaspersky/rescue_disk< 18.0.11.3
NVDkaspersky/endpoint_security4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-xm85-53qc-rpxj: A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity2022-05-24
CVEList
CVE-2020-26200: A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity2021-02-26
CVE-2020-26200 — Improper Authentication in Kaspersky | cvebase