Gigabyte UEFI Vulnerabilities Enable Malware to Bypass Secure Boot
Researchers at Binarly have disclosed multiple high-impact vulnerabilities affecting the UEFI firmware of over 240 Gigabyte motherboard models.
Researchers at Binarly have disclosed multiple high-impact vulnerabilities affecting the UEFI firmware of over 240 Gigabyte motherboard models.
CVE-2025-3052
There is a new vulnerability published on June 10, 2025 for a set of Microsoft-signed UEFI applications.
CVE-2024-7344
ESET researchers have identified a critical vulnerability that directly compromises UEFI Secure Boot.
Security researchers at ESET discovered BootKitty which is the first known UEFI bootkit that targets Linux.
CVE-2024-36877
Certain Micro-Star International (MSI) motherboards have a buffer overflow vulnerability which allows an attacker to execute arbitrary code.
CVE-2024-8105
The Binarly Research Team recently published a report about the firmware vulnerability PKfail. Because of this vulnerability, certain devices shipped with insecure Platform Keys (PK). These keys are used in a test/development environment and were not intended to be shipped with a production-ready device.
Phoenix Technologies
Corporate Headquarters:
2105 S. Bascom Avenue
Suite 316
Campbell, CA 95008-3295
Toll Free: 1-888-249-4880
Tel: +1-408-570-1000 (option 3)
Who We Serve
Solutions
Resources
Company
Copyright © 2023-2025. Phoenix Technologies.
BIOS firmware security
Remote BIOS configuration
Remote BIOS update
Remote endpoint drive erasure
Remotely reimage an endpoint
Display endpoint system information
Monitor endpoint connectivity