The vulnerability received the CV-2025-3052 code. With the help of an attacker can change the special settings in the nvram memory and circulate around safe boot protection. This allows you to run the malicious code until the operating system is installed, including programs that do not appear in antiviruses.
The oddity of the problem is that the Microsoft certificate is signed by the Microsoft certificate, which enables it to be “trust için for most systems. Microsoft has already added dangerous files to the Black Load list (DBX) so that they should not be started. Red Hat is preparing a similar update.
Dtresearch claims that they are designed for UEFI devices from Insyde, where only the vulnerability can not be used due to memory access restrictions. However, experts believe that a similar attack is still possible on most devices based on UEFI.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
