Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. These kernel builds don't have the secure boot lockdown patches applied to it and can bypass the secure boot validations, allowing the attacker to load another non-trusted code.
CVSS Information
N/A
Vulnerability Type
CWE-1291
Vulnerability Title
IBM Power System 安全漏洞
Vulnerability Description
IBM Power System是美国IBM公司的一款基于Power处理器的服务器计算机。 IBM Power System 存在安全漏洞,该漏洞源于预生产内核包可以由 grub 在安全引导模式下引导,这些内核构建没有应用安全启动锁定补丁,并且可以绕过安全启动验证,攻击者利用该漏洞加载另一个不受信任的代码,以下产品和版本受到影响:用于 IBM Power 的 Red Hat Enterprise Linux 的签名版本。
CVSS Information
N/A
Vulnerability Type
N/A