all InfoSec news
ADV230002 Microsoft Guidance for Addressing Security Feature Bypass in Trend Micro EFI Modules
July 11, 2023, 7 a.m. |
MSRC Security Update Guide msrc.microsoft.com
To exploit this vulnerability, an attacker would need to have administrative privileges or physical access on a system where Secure Boot is configured to trust the Microsoft Unified Extensible Firmware Interface (UEFI) Certificate Authority (CA).
CVEs released for this issue: CVE-2023-28005.
## …
access actions administrative privileges adv authority boot certificate certificate authority customers cve cves exploit firmware information install interface issue latest microsoft physical privileges secure boot security security updates system trust uefi updates vulnerability windows windows security
More from msrc.microsoft.com / MSRC Security Update Guide
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
DevSecOps Engineer
@ LinQuest | Beavercreek, Ohio, United States
Senior Developer, Vulnerability Collections (Contractor)
@ SecurityScorecard | Remote (Turkey or Latin America)
Cyber Security Intern 03416 NWSOL
@ North Wind Group | RICHLAND, WA
Senior Cybersecurity Process Engineer
@ Peraton | Fort Meade, MD, United States
Sr. Manager, Cybersecurity and Info Security
@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US