⚠ Actively exploited
Added to CISA KEV on 2025-10-14. Federal agencies required to patch by 2025-11-04. Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable..

CVE-2025-47827Improper Verification of Cryptographic Signature in OS

CWE-347Improper Verification of Cryptographic SignatureCWE-324Use of a Key Past its Expiration Date11 documents10 sources
Severity
4.6MEDIUMNVD
EPSS
1.4%
top 19.54%
CISA KEV
KEV
Added 2025-10-14
Due 2025-11-04
Exploit
No known exploits
Affected products
16
Igel OSMicrosoft Windows 10 1507Microsoft Windows 10 1607+13 more
Timeline
PublishedJun 5
KEV addedOct 14
KEV dueNov 4
CISA Required Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Description

In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 0.9 | Impact: 3.6

Affected Packages11 packages

NVDigel/igel_os< 11.01.100
NVDmicrosoft/windows< 10.0.14393.8519+5
NVDmicrosoft/windows_10_1507< 10.0.10240.21161
NVDmicrosoft/windows_10_1607< 10.0.14393.8519
NVDmicrosoft/windows_10_1809< 10.0.17763.7919

🔴Vulnerability Details

3
GHSA
GHSA-pww7-j9v6-xc6j: In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature2025-06-05
CVEList
CVE-2025-47827: In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature2025-06-05
VulnCheck
IGEL OS Use of a Key Past its Expiration Date Vulnerability2025

📋Vendor Advisories

2
CISA
IGEL OS Use of a Key Past its Expiration Date Vulnerability2025-10-14
Microsoft
MITRE CVE-2025-47827: Secure Boot bypass in IGEL OS before 112025-10-14

🕵️Threat Intelligence

5
Qualys
Microsoft and Adobe Patch Tuesday, October 2025 Security Update Review | Qualys2025-10-14
Qualys
Microsoft and Adobe Patch Tuesday, October 2025 Security Update Review2025-10-14
Bleepingcomputer
Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws2025-10-14
Crowdstrike
October 2025 Patch Tuesday: Updates and Analysis
Recorded Future
October 2025 CVE Landscape
CVE-2025-47827 — Igel OS vulnerability | cvebase