CVE-2023-43635

Name of the Vulnerable Software and Affected Versions EVE OS (affected versions not specified)

Description The measured boot solution in EVE OS uses a PCR locking mechanism to protect the "vault" directory, which is the most sensitive point in the system. However, the key used to encrypt/decrypt the "vault" is sealed using SHA1 PCRs instead of SHA256 PCRs, which is considered insecure. This leads to issues where machines with SHA256 PCRs enabled but SHA1 PCRs disabled are not protected, and attackers can easily retrieve the contents of the "vault". The use of SHA1 PCRs reduces the complexity level required to unseal the key, making it easier for attackers to access the "vault".

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.