Vulnerability CVE-2020-26200


Published: 2021-02-26

Description:
A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). This issue allowed to bypass the UEFI Secure Boot security feature. An attacker would need physical access to the computer to exploit it. Otherwise, local administrator privileges would be required to modify the boot loader component.

Type:

CWE-863

(Incorrect Authorization)

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.6/10
6.4/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Kaspersky -> Endpoint security 
Kaspersky -> Rescue disk 

 References:
https://github.com/CVEProject/cvelist/blob/master/2020/26xxx/CVE-2020-26200.json
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#170221

Copyright 2024, cxsecurity.com

 

Back to Top