A critical firmware-level attack vector that affects multiple vendor-signed UEFI applications, enabling attackers to bypass Secure Boot protections and execute arbitrary Code before the operating system loads. Discovered by Martin Smolar of ESET, the vulnerability mirrors a “Bring Your Own Vulnerable Driver” (BYOVD) approach but targets the pre-boot environment rather than the OS kernel. The […]
The post Trusted UEFI Certificates Exploited to Bypass Kernel Security Protections appeared first on Cyber Security News.