Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2025-13335 | This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
No reference.
Mon, 05 May 2025 03:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
| Metrics |
cvssV3_1
|
Mon, 05 May 2025 02:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
| |
| Metrics |
cvssV3_1
|
Mon, 05 May 2025 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability in the digital signature verification process does not properly validate variable attributes which allows an attacker to bypass signature verification by creating a non-authenticated NVRAM variable. An attacker may to execute arbitrary signed UEFI code and bypass Secure Boot. | This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| Title | Incorrect UEFI variable attributes check allows usage of invalid certificate | |
| References |
|
|
| Metrics |
cvssV3_1
|
Mon, 05 May 2025 02:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability in the digital signature verification process does not properly validate variable attributes which allows an attacker to bypass signature verification by creating a non-authenticated NVRAM variable. An attacker may to execute arbitrary signed UEFI code and bypass Secure Boot. | |
| Title | Incorrect UEFI variable attributes check allows usage of invalid certificate | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
Status: REJECTED
Assigner: Insyde
Published:
Updated: 2025-05-05T02:07:06.681Z
Reserved: 2025-05-05T01:10:00.864Z
Link: CVE-2025-4273
No data.
Status : Rejected
Published: 2025-05-05T02:15:18.660
Modified: 2025-05-05T03:15:23.837
Link: CVE-2025-4273
No data.
OpenCVE Enrichment
No data.
No weakness.
EUVD