Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). This issue allowed to bypass the UEFI Secure Boot security feature. An attacker would need physical access to the computer to exploit it. Otherwise, local administrator privileges would be required to modify the boot loader component.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kaspersky 安全漏洞
Vulnerability Description
Kaspersky module是俄罗斯卡巴斯基(Kaspersky)公司的一个应用组件。提供杀毒防护功能。 Kaspersky 存在安全漏洞,该漏洞允许加载不受信任的UEFI模块,因为它们的真实性检查不足。
CVSS Information
N/A
Vulnerability Type
N/A