UEFI firmware
PKfail: 800+ Major PC Models have Insecure ‘Secure Boot’
Richi Jennings | | Binarly, BIOS, BIOS update, Certificate and Key Management, hardware supply chain, key management, Key Management Problem, PKfail, Private Key Management, SB Blogwatch, secure boot, UEFI, UEFI Failing, UEFI firmware, UEFI vulnerabilities, Unified Extensible Firmware Interface (UEFI)
Big BIOS bother: Hundreds of PC models from vendors such as HP, Lenovo, Dell, Intel, Acer and Gigabyte shipped with useless boot protection—using private keys that aren’t private ...
Security Boulevard
Critical PixieFail Vulnerabilities Lead to RCE and DoS Attacks
Rohan Timalsina | | buffer-overflow-attacks, Cyber Threats, Denial-of-Service (DoS), Linux & Open Source News, PixieFail UEFI flaws, PixieFail Vulnerabilities, Remote Code Execution, Remote Code Execution Vulnerabilities, security vulnerabilites, UEFI firmware, Unified Extensible Firmware Interface (UEFI)
A set of critical security vulnerabilities has been found in the TCP/IP network protocol stack of an open-source reference implementation of the Unified Extensible Firmware Interface (UEFI) specification. Named PixieFail by Quarkslab, ...