CVE-2022-34301Download of Code Without Integrity Check in Cryptopro Securedisk FOR Bitlocker

CWE-494Download of Code Without Integrity Check5 documents5 sources
Severity
6.7MEDIUMNVD
EPSS
0.1%
top 68.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Kidan Cryptopro Securedisk FOR BitlockerMicrosoft Windows 10Microsoft Windows Server 2012+2 more
Timeline
PublishedAug 26
Latest updateAug 27

Description

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages3 packages

NVDkidan/cryptopro_securedisk< 2022-06-01
NVDmicrosoft/windowsr2, 20h2+1
NVDmicrosoft/windows_105 versions+4

Also affects: Enterprise Linux 7.0, 8.0, 9.0

🔴Vulnerability Details

2
GHSA
GHSA-7j33-663j-fx7f: A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-012022-08-27
CVEList
CVE-2022-34301: A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-012022-08-26

📋Vendor Advisories

2
Red Hat
shim: 3rd party shim allow secure boot bypass2022-08-11
Microsoft
CERT/CC: CVE-2022-34301 Eurosoft Boot Loader Bypass2022-08-09
CVE-2022-34301 — MEDIUM severity | cvebase