alpine · CVE-2023-48733

Quick triage

Priority: not assigned Published: Updated:

View at Official alpine advisory, NVD, CVE.org · CVE detail

Freshness: no update timestamp found; verify against the upstream OS advisory manually.

Tracker summary

CVE-2023-48733: 1 source package rows (edk2); 8 state rows across 3 repos (3.22-community, 3.23-community, edge-community); fixed 0, open 8.

Description:

An insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure Boot.

cvelogic Threat Intelligence