UEFI Firmware IOMMU Initialization Vulnerability
December 19, 2025
FirmGuard is monitoring coordinated disclosures regarding a vulnerability affecting certain UEFI-based motherboards from multiple vendors.
FirmGuard is monitoring coordinated disclosures regarding a vulnerability affecting certain UEFI-based motherboards from multiple vendors.
Researchers at ESET discovered a new UEFI-based ransomware dubbed HybridPetya. This malware relies on a vulnerability that was previously disclosed in January, 2025 (CVE-2024-7344) and facilitates bypass of Secure Boot.
Researchers at Binarly have disclosed multiple high-impact vulnerabilities affecting the UEFI firmware of over 240 Gigabyte motherboard models.
CVE-2025-3052
There is a new vulnerability published on June 10, 2025 for a set of Microsoft-signed UEFI applications.
CVE-2024-7344
ESET researchers have identified a critical vulnerability that directly compromises UEFI Secure Boot.
Security researchers at ESET discovered BootKitty which is the first known UEFI bootkit that targets Linux.