Insecure Default in EDK2 Allows Bypass of Secure Boot
CVE-2023-48733
6.7MEDIUM
What is CVE-2023-48733?
An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot.
Affected Version(s)
Ubuntu EDK II Linux 0 < 2023.05-2ubuntu0.1