- Description
- In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.
- Source
- cve@mitre.org
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 8.4
- Impact score
- 5.9
- Exploitability score
- 2.5
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-347
- Hype score
- Not currently trending
📛 Admin access transforms Secure Boot vulnerabilities like CVE-2025-3052 & CVE-2025-47827 into catastrophic openings for attackers. These CVEs are no joke—fix them NOW! #hacking #ethicalhacking #infosec https://t.co/ro7MT58EkM https://t.co/UcpiQ8tGeH
@lnxsec
10 Jul 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📢 Microsoft hasn’t revoked compromised certificates linked to CVE-2025-47827. Why? This oversight impacts Linux systems globally. IT managers must patch manually for now. #hacking #cybersec #NetworkSecurity https://t.co/ro7MT58EkM https://t.co/NfnEI9bc32
@lnxsec
10 Jul 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
☠️ Are Linux servers vulnerable to stealthy malware? CVE-2025-47827 shows why signed binaries aren't bulletproof. Learn proactive steps for securing your infrastructure. #hacking #coding #linux https://t.co/SA7og338Xi
@mxm_mainsecure
9 Jul 2025
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚧 Not-so-secure boot? CVE-2025-47827 targets Linux environments relying on Microsoft's 3rd Party UEFI CA certificate. Reassess your trust structure to block attackers now. #hacking #coding #cybersec https://t.co/ro7MT58EkM https://t.co/tcYtlZKI0g
@lnxsec
4 Jul 2025
75 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Physical access isn’t the only threat. CVE-2025-47827 exposes flaws in Linux shim security signed by Microsoft. What makes this vulnerability catastrophic for Linux admins? #hacking #coding #infosec https://t.co/ro7MT58EkM https://t.co/TUKYiq3Yym
@lnxsec
2 Jul 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
研究人员发现两个漏洞能🔓绕过 Secure Boot,微软只修复了一个😢。CVE-2025-3052是DT Research设备固件工具漏洞🛠️,微软已屏蔽。另一个CVE-2025-47827涉Linux内核模块IGEL,微软未撤销签名💔。令人绝望😭。
@touhlih
11 Jun 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-47827 In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root files… https://t.co/9vmwJkiJRG
@CVEnew
5 Jun 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes