One Bootloader to Load Them All – Two of the vulnerabilities (CVE-2022-34301 and CVE-2022-34303) are similar in that they involve signed UEFI shells. In the case of Eurosoft, the signed shell is esdiags.efi while for CryptoPro Secure Disk, the shell is Shell_Full.efi. used to subvert secure boot



As part of our continuing research into vulnerable and malicious bootloaders, we have identified three new bootloader vulnerabilities which affect the vast majority of devices released over the past 10 years including x86-64 and ARM-based devices. These vulnerabilities could be used by an attacker to easily evade Secure Boot protections and compromise the integrity of the boot process; enabling the attacker to modify the operating system as it loads, install backdoors, and disable oper…

Read More