CVE-2025-4275 PoC — Insyde InsydeH2O 安全漏洞

Source

https://github.com/NikolajSchlej/Hydroph0bia

Associated Vulnerability

Title:Insyde InsydeH2O 安全漏洞 (CVE-2025-4275)
Description:Insyde InsydeH2O是中国系微（Insyde）公司的一个新的 EFI/UEFI 规范。旨在取代传统的 BIOS（基本输入/输出系统）。 Insyde InsydeH2O存在安全漏洞，该漏洞源于可更改证书并执行.efi文件。

Description

Binaries, drivers, PoCs and other stuff on Hydroph0bia vulnerability (CVE-2025-4275)

File Snapshot


 [4.0K]  /data/pocs/07da86dff1640fb835c928899a721510c7d76b7f
├── [4.0K]  bios_images
│   ├── [ 19M]  aybabtu_logo.bin
│   ├── [ 18M]  dell_g15_5535_0.13.0.bin.zip
│   ├── [ 18M]  dell_g15_5535_0.14.0.bin.zip
│   └── [ 19M]  original.bin
├── [1.3K]  LICENSE
├── [4.0K]  patch_diff
│   ├── [240K]  0.13.0.bin.report.txt
│   ├── [240K]  0.14.0.bin.report.txt
│   ├── [289K]  BdsDxe_new.efi
│   ├── [289K]  BdsDxe_old.efi
│   ├── [ 40K]  SecureFlashDxe_new.efi
│   ├── [ 39K]  SecureFlashDxe_old.efi
│   ├── [ 34K]  SecurityStubDxe_new.efi
│   └── [ 34K]  SecurityStubDxe_old.efi
├── [4.0K]  SecureFlashPoC
│   ├── [ 14K]  SecureFlashPoC.c
│   └── [ 577]  SecureFlashPoCDxe.inf
├── [4.0K]  sfcd
│   ├── [ 248]  CMakeLists.txt
│   ├── [9.1K]  sfcd.c
│   └── [ 12K]  SFCD.exe
├── [4.0K]  sfpoc
│   ├── [ 19M]  bios.bin
│   ├── [1.7M]  fpt_signed.efi
│   ├── [1.1M]  isflash.bin
│   ├── [ 12K]  sfcd.exe
│   ├── [ 518]  sfpoc.cmd
│   ├── [4.6K]  sfpoc_signed.efi
│   ├── [ 301]  startup_1.nsh
│   └── [ 240]  startup_2.nsh
└── [4.0K]  signed
    ├── [ 36K]  crscreenshotdxe_signed.efi
    ├── [1.7M]  fpt16_signed.efi
    ├── [4.6K]  sfpoc_signed.efi
    └── [1.1M]  shell_signed.efi

6 directories, 30 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!