CVE-2024-20669

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Apr 9, 2024
Updated: Jan 8, 2025
CWE ID 693

Summary

CVE-2024-20669 is a newly disclosed Secure Boot security feature bypass vulnerability. This issue allows an attacker to gain unauthorized access to a system by bypassing the Secure Boot verification process. The vulnerability lies in the implementation of Secure Boot, allowing malicious code to load even with verification enabled. This poses a significant risk, as Secure Boot is designed to prevent untrusted code from executing during the boot process. The full impact and exploit details of this vulnerability are still under investigation, but it is recommended that affected systems be updated as soon as patches become available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share