CVE-2025-2486

CWE-4897 documents7 sources
Severity
3.7LOW
EPSS
0.0%
top 93.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Ubuntu Edk2Tianocore Edk2
Timeline
PublishedNov 26

Description

The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based decision to continue running inside the Shell itself, which is believed to be sufficient to enforce Secure Boot restrictions. This is an additional repair on top of the incomplete fix for CVE-2023-48733.

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H

Affected Packages3 packages

CVEListV5ubuntu/edk22024.052024.05-2ubuntu0.3+1
Debianedk2< 2020.11-2+deb11u2+3
NVDtianocore/edk2202402*, 202405+1

Patches

Patch: bugs.launchpad.net

🔴Vulnerability Details

3
CVEList
UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu2025-11-26
OSV
CVE-2025-2486: The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Sec2025-11-26
GHSA
GHSA-g658-h443-xpr6: The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Sec2025-11-26

📋Vendor Advisories

3
Red Hat
edk2: edk2: UEFI Shell access in Secure Boot environments allows bypass of Secure Boot constraints2025-11-26
Microsoft
UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu2025-11-11
Debian
CVE-2025-2486: edk2 - The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be...2025
CVE-2025-2486 (LOW CVSS 3.7) | The Ubuntu edk2 UEFI firmware packa | cvebase.io