Mathieu Trudel-Lapierre

**Name of the Vulnerable Software and Affected Versions** GRUB2 versions 2.04 and prior **Description** The issue is related to an incorrect validation of cryptographic signatures in the GRUB2 bootloader, which can allow an attacker to bypass secure boot and execute arbitrary code, gaining full control over the device. This affects systems where the kernel signing certificate is directly imported into the secure boot database and the GRUB image is booted without the use of shim. **Recommendations** For GRUB2 versions 2.04 and prior, consider updating to a version that includes the fix for this issue, as the current version allows secure boot to be bypassed when booted directly without shim. At the moment, there is no information about a newer version that contains a fix for this vulnerability.