CVE-2025-3770

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-3770

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-3770.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-3770

Downstream

DEBIAN-CVE-2025-3770

OESA-2025-2298

OESA-2025-2299

OESA-2025-2300

OESA-2025-2386

OESA-2025-2387

OESA-2025-2388

UBUNTU-CVE-2025-3770

USN-7894-1

Published

2025-08-07T01:15:25Z

Modified

2025-09-06T22:00:20Z

Summary

[none]

Details

EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability.

References

https://github.com/tianocore/edk2/security/advisories/GHSA-vx5v-4gg6-6qxr

Affected packages