Is Chrome OS vulnerable to per VU#309662 , vulnerable UEFI bootloaders?

67 views

Skip to first unread message

Veronica Cisneros

unread,

Oct 24, 2022, 10:17:39 PM10/24/22

to ChromiumOS Discussion

A couple of months ago CISA notified the public about "Signed third party UEFI bootloaders are vulnerable to Secure Boot bypass " https://kb.cert.org/vuls/id/309662

The list of vendors that have NOT provided feedback on the status of this vulnerability for their products include Google.

Are Chromebooks hackable as per this vulnerability?

Thank you

Peter Marheine

unread,

Oct 24, 2022, 10:24:41 PM10/24/22

to hacked.by.fo...@gmail.com, ChromiumOS Discussion

Chromebooks do not use UEFI (well, some very old devices did). See https://www.chromium.org/chromium-os/developer-information-for-chrome-os-devices/custom-firmware/ for more information.

--
--
Chromium OS Discussion mailing list: chromium-...@chromium.org
View archives, change email options, or unsubscribe:
https://groups.google.com/a/chromium.org/group/chromium-os-discuss

Reply all

Reply to author

Forward

0 new messages