PKfail: Untrusted Platform Keys Undermine Secure Boot on UEFI Ecosystem
July 25, 2024
CVE-2024-8105
The Binarly Research Team recently published a report about the firmware vulnerability PKfail. Because of this vulnerability, certain devices shipped with insecure Platform Keys (PK). These keys are used in a test/development environment and were not intended to be shipped with a production-ready device.