Critical shim bug impacts every Linux boot loader signed in the past decade | allinfosecnews.com

Feb. 7, 2024, 2:45 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

The maintainers of Shim addressed six vulnerabilities, including a critical flaw that could potentially lead to remote code execution. The maintainers of ‘shim’ addressed six vulnerabilities with the release of version 15.8. The most severe of these vulnerabilities, tracked as CVE-2023-40547 (CVSS score: 9.8), can lead to remote code execution under specific circumstances. The vulnerability CVE-2023-40547 is […]

boot breaking news bug can code code execution critical critical flaw cve cvss cvss score flaw hacking information security news it information security linux loader maintainers pierluigi paganini release remote code remote code execution score shim six version vulnerabilities

More from securityaffairs.co / Security Affairs

Hackers may have accessed thousands of accounts on the California state welfare platform 18 hours ago | securityaffairs.co

accounts benefitscal breach breached +21

Brokewell Android malware supports an extensive set of Device Takeover capabilities 1 day, 1 hour ago | securityaffairs.co

android android malware breaking news brokewell android malware +18

Experts warn of an ongoing malware campaign targeting WP-Automatic plugin 1 day, 19 hours ago | securityaffairs.co

automatic backdoors breaking news campaign +33

Cryptocurrencies and cybercrime: A critical intermingling 1 day, 21 hours ago | securityaffairs.co

breaking news critical cryptocurrencies cyber crime +14

Kaiser Permanente data breach may have impacted 13.4 million patients 1 day, 21 hours ago | securityaffairs.co

american breach breaking news care +27

Over 1,400 CrushFTP internet-facing servers vulnerable to CVE-2024-4040 bug 2 days ago | securityaffairs.co

attacks breaking news bug critical +25

Sweden’s liquor supply severely impacted by ransomware attack on logistics company 2 days, 2 hours ago | securityaffairs.co

alcohol attack breaking news critical +17

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities … 2 days, 12 hours ago | securityaffairs.co

actor agency asa breaking news +28

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog 2 days, 19 hours ago | securityaffairs.co

agency breaking news catalog cisa +29

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Associate Principal Security Engineer

@ Activision Blizzard | Work from Home - CA

View on infosec-jobs.com

Security Engineer- Systems Integration

@ Meta | Bellevue, WA | Menlo Park, CA | New York City

View on infosec-jobs.com

Lead Security Engineer (Digital Forensic and IR Analyst)

@ Blue Yonder | Hyderabad

View on infosec-jobs.com

Senior Principal IAM Engineering Program Manager Cybersecurity

@ Providence | Redmond, WA, United States

View on infosec-jobs.com

Information Security Analyst II or III

@ Entergy | The Woodlands, Texas, United States

View on infosec-jobs.com