CVE-2022-34302Download of Code Without Integrity Check in Uefi Bootloader

CWE-494Download of Code Without Integrity Check5 documents5 sources
Severity
6.7MEDIUMNVD
EPSS
0.1%
top 65.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Horizondatasys Uefi BootloaderMicrosoft Windows 10Microsoft Windows Server 2012+2 more
Timeline
PublishedAug 26
Latest updateAug 27

Description

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages3 packages

NVDmicrosoft/windowsr2, 20h2+1
NVDmicrosoft/windows_105 versions+4

Also affects: Enterprise Linux 7.0, 8.0, 9.0

🔴Vulnerability Details

2
GHSA
GHSA-77q2-m9gq-g982: A flaw was found in New Horizon Datasys bootloaders before 2022-06-012022-08-27
CVEList
CVE-2022-34302: A flaw was found in New Horizon Datasys bootloaders before 2022-06-012022-08-26

📋Vendor Advisories

2
Red Hat
shim: 3rd party shim allow secure boot bypass2022-08-11
Microsoft
CERT/CC: CVE-2022-34302 New Horizon Data Systems Inc Boot Loader Bypass2022-08-09
CVE-2022-34302 — Uefi Bootloader vulnerability | cvebase