UEFI Shell accessible in AAVMF with Secure Boot enabled on...

3.7 / 10

LOW

CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/E:U

Description

The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based decision to continue running inside the Shell itself, which is believed to be sufficient to enforce Secure Boot restrictions. This is an additional repair on top of the incomplete fix for CVE-2023-48733.

Basic Information

ID CVE-2025-2486

Source canonical

Published Nov 26, 2025 at 17:33

Modified Nov 26, 2025 at 18:25

Affected Product

Vendor Ubuntu

Product edk2

Version 2024.05

Affected Versions Ubuntu edk2 2024.05
Ubuntu edk2 2024.02

CWE Classification

CWE-489

References

bugs.launchpad.net /ubuntu/+source/edk2/+bug/2101797

{
    "lastseen": "",
    "description": "The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based decision to continue running inside the Shell itself, which is believed to be sufficient to enforce Secure Boot restrictions. This is an additional repair on top of the incomplete fix for CVE-2023-48733.",
    "published": "2025-11-26T17:33:17.506Z",
    "modified": "2025-11-26T18:25:29.426Z",
    "type": "cve",
    "title": "UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu",
    "source": "canonical",
    "references": "https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/2101797",
    "id": "CVE-2025-2486",
    "bulletinFamily": "",
    "cwe": [
        "CWE-489"
    ],
    "cvelist": null,
    "sourceData": "Ubuntu edk2 2024.05\nUbuntu edk2 2024.02",
    "sourceHref": "",
    "cvss": {
        "score": 3.7,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/E:U",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "edk2",
    "version": "2024.05",
    "vendor": "Ubuntu",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu_CVE-2025-2486