CVE-2025-3052

high

Description

An arbitrary write vulnerability in Microsoft signed UEFI firmware allows for code execution of untrusted software. This allows an attacker to control its value, leading to arbitrary memory writes, including modification of critical firmware settings stored in NVRAM. Exploiting this vulnerability could enable security bypasses, persistence mechanisms, or full system compromise.

References

References
More

https://www.securityweek.com/flaw-in-industrial-computer-makers-uefi-apps-enables-secure-boot-bypass-on-many-devices/

https://thehackernews.com/2025/06/microsoft-patches-67-vulnerabilities.html

https://www.securityweek.com/microsoft-patch-tuesday-covers-webdav-flaw-marked-as-already-exploited/

https://kb.cert.org/vuls/id/806555

https://arstechnica.com/security/2025/06/unearthed-in-the-wild-2-secure-boot-exploits-microsoft-patches-only-1-of-them/

https://www.kb.cert.org/vuls/id/806555

https://www.binarly.io/advisories/brly-dva-2025-001

https://uefi.org/specs/UEFI/2.10/32_Secure_Boot_and_Driver_Signing.html

Details

Source: Mitre, NVD

Published: 2025-06-10

Updated: 2025-06-12

Named Vulnerability: Secure Boot bypassNamed Vulnerability: BRLY-2025-001

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 8.2

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00013