all InfoSec news
ADV230002 Microsoft Guidance for Addressing Security Feature Bypass in Trend Micro EFI Modules
July 11, 2023, 7 a.m. |
MSRC Security Update Guide msrc.microsoft.com
To exploit this vulnerability, an attacker would need to have administrative privileges or physical access on a system where Secure Boot is configured to trust the Microsoft Unified Extensible Firmware Interface (UEFI) Certificate Authority (CA).
CVEs released for this issue: CVE-2023-28005.
## …
access actions administrative privileges adv authority boot certificate certificate authority customers cve cves exploit firmware information install interface issue latest microsoft physical privileges secure boot security security updates system trust uefi updates vulnerability windows windows security
More from msrc.microsoft.com / MSRC Security Update Guide
CVE-2024-30060 Azure Monitor Agent Elevation of Privilege Vulnerability
2 weeks, 2 days ago |
msrc.microsoft.com
Chromium: CVE-2024-4761 Out of bounds write in V8
2 weeks, 4 days ago |
msrc.microsoft.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC