Bypass of Secure Boot in IGEL OS by improper signature verification
CVE-2025-47827

4.6MEDIUM

Key Information:

Vendor: IGEL Technology
Status: IGEL OS
Vendor: CVE Published:; 5 June 2025

🔔 Create IGEL Technology Vulnerability Alert

Badges

👾 Exploit Exists🟣 EPSS 16%🦅 CISA Reported📰 News Worthy

What is CVE-2025-47827?

In affected versions of IGEL OS, the igel-flash-driver module has a security flaw that allows an attacker to bypass Secure Boot. This occurs due to the module's failure to properly verify the cryptographic signature of the root filesystem. As a result, an unverified SquashFS image can be mounted, potentially leading to unauthorized access and exposing systems to various security threats.

CISA has reported CVE-2025-47827

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2025-47827 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.