CVE-2025-4273

Name of the Vulnerable Software and Affected Versions Intel UEFI (affected versions not specified)

Description A vulnerability in the digital signature verification process does not properly validate variable attributes, which allows an attacker to bypass signature verification by creating a non-authenticated NVRAM variable. This enables an attacker to execute arbitrary signed UEFI code and bypass Secure Boot.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.