CVE-2025-47827
CVE-2025-47827
In short
IGEL OS versions before 11 have a flaw in their Secure Boot system that allows someone to load an unverified operating system by bypassing signature checks in the igel-flash-driver module. This bypasses a key security feature designed to prevent unauthorized system changes.
Technical detail
The igel-flash-driver module in IGEL OS < 11 fails to properly validate cryptographic signatures during Secure Boot verification, allowing an attacker with local or physical access to mount a crafted SquashFS root filesystem that lacks valid signatures. This undermines the integrity verification mechanism that protects against unauthorized kernel and filesystem modifications.
Summary generated and translated by AI from the official description.
In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
n/a · n/apublic PoCs found — 1
githubgithub.com/Zedeldi/CVE-2025-47827★ 2⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →