CVE-2025-47827

Published Jun 5, 2025

Last updated a month ago

Exploit knownCVSS medium 4.6
IGEL OS

Overview

Description
In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.
Source
cve@mitre.org
NVD status
Analyzed
Products
igel_os, windows_10_1507, windows_10_1607, windows_10_1809, windows_10_21h2, windows_10_22h2, windows_11_22h2, windows_11_23h2, windows_11_24h2, windows_11_25h2, windows_server_2012, windows_server_2016, windows_server_2019, windows_server_2022, windows_server_2022_23h2, windows_server_2025

Risk scores

CVSS 3.1

Type
Secondary
Base score
4.6
Impact score
3.6
Exploitability score
0.9
Vector string
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
MEDIUM

Known exploits

Data from CISA

Vulnerability name
IGEL OS Use of a Key Past its Expiration Date Vulnerability
Exploit added on
Oct 14, 2025
Exploit action due
Nov 4, 2025
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-347

Social media

Hype score
Not currently trending

  1. 𝗣𝗮𝘁𝗰𝗵 𝗧𝘂𝗲𝘀𝗱𝗮𝘆: 𝗢𝗰𝘁𝗼𝗯𝗲𝗿 𝟮𝟬𝟮𝟱 𝗛𝗶𝗴𝗵𝗹𝗶𝗴𝗵𝘁𝘀 𝗬𝗼𝘂 𝗦𝗵𝗼𝘂𝗹𝗱𝗻’𝘁 𝗠𝗶𝘀𝘀 ▪️ Microsoft has addressed 173 vulnerabilities, three exploited zero-day

    @Action1corp

    17 Oct 2025

    105 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🛡️ Cyber Threat Digest – 2025-10-15 KEV: CVE-2025-47827 — IGEL OS Use of NVD: CVE-2025-22831 — APTIOV contains a vulnerability News: F5 says hackers stole undisclosed BIG-IP… #cybersecurity #infosec #CVE More: https://t.co/J1fpKfnDnv

    @dpharristech

    15 Oct 2025

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 𝗧𝗼𝗱𝗮𝘆'𝘀 𝗣𝗮𝘁𝗰𝗵 𝗧𝘂𝗲𝘀𝗱𝗮𝘆 𝗼𝘃𝗲𝗿𝘃𝗶𝗲𝘄: ▪️ Microsoft has addressed 173 vulnerabilities, three exploited zero-days (CVE-2025-59230, CVE-2025-47827 and CVE-2025-24990) and three with PoC (CVE-2025-2884, CVE-2

    @Action1corp

    14 Oct 2025

    128 Impressions

    0 Retweets

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  4. #VulnerabilityReport #CVE202547827 IGEL OS 10 Flaw (CVE-2025-47827): Full Secure Boot Bypass Allows Untrusted Kernel & Rootkits, PoC Available https://t.co/oL5A1uIEOi

    @Komodosec

    19 Jul 2025

    39 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. 📛 Admin access transforms Secure Boot vulnerabilities like CVE-2025-3052 & CVE-2025-47827 into catastrophic openings for attackers. These CVEs are no joke—fix them NOW! #hacking #ethicalhacking #infosec https://t.co/ro7MT58EkM https://t.co/UcpiQ8tGeH

    @lnxsec

    10 Jul 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 📢 Microsoft hasn’t revoked compromised certificates linked to CVE-2025-47827. Why? This oversight impacts Linux systems globally. IT managers must patch manually for now. #hacking #cybersec #NetworkSecurity https://t.co/ro7MT58EkM https://t.co/NfnEI9bc32

    @lnxsec

    10 Jul 2025

    16 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. ☠️ Are Linux servers vulnerable to stealthy malware? CVE-2025-47827 shows why signed binaries aren't bulletproof. Learn proactive steps for securing your infrastructure. #hacking #coding #linux https://t.co/SA7og338Xi

    @mxm_mainsecure

    9 Jul 2025

    30 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 🚧 Not-so-secure boot? CVE-2025-47827 targets Linux environments relying on Microsoft's 3rd Party UEFI CA certificate. Reassess your trust structure to block attackers now. #hacking #coding #cybersec https://t.co/ro7MT58EkM https://t.co/tcYtlZKI0g

    @lnxsec

    4 Jul 2025

    75 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. ⚠️ Physical access isn’t the only threat. CVE-2025-47827 exposes flaws in Linux shim security signed by Microsoft. What makes this vulnerability catastrophic for Linux admins? #hacking #coding #infosec https://t.co/ro7MT58EkM https://t.co/TUKYiq3Yym

    @lnxsec

    2 Jul 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. 研究人员发现两个漏洞能🔓绕过 Secure Boot,微软只修复了一个😢。CVE-2025-3052是DT Research设备固件工具漏洞🛠️,微软已屏蔽。另一个CVE-2025-47827涉Linux内核模块IGEL,微软未撤销签名💔。令人绝望😭。

    @touhlih

    11 Jun 2025

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. CVE-2025-47827 In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root files… https://t.co/9vmwJkiJRG

    @CVEnew

    5 Jun 2025

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.