{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-11577", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "state": "PUBLISHED", "assignerShortName": "certcc", "dateReserved": "2025-10-10T02:08:14.733Z", "datePublished": "2025-10-14T15:34:09.651Z", "dateUpdated": "2025-10-15T13:17:44.736Z"}, "containers": {"cna": {"title": "Clevo UEFI firmware exposed Boot Guard private keys, enabling potential abuse of the Boot Guard trust chain", "descriptions": [{"lang": "en", "value": "Clevo\u2019s UEFI firmware update packages, including B10717.exe, inadvertently contained private signing keys used for Boot Guard and Boot Policy Manifest verification. The exposure of these keys could allow attackers to sign malicious firmware that appears trusted by affected systems, undermining the integrity of the early boot process."}], "source": {"discovery": "EXTERNAL"}, "affected": [{"vendor": "Clevo", "product": "Notebook System Firmware", "versions": [{"status": "affected", "version": "1.07.07TRO1"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-321 Use of Hard\u2011coded Cryptographic Key"}]}], "references": [{"url": "https://www.binarly.io/advisories/brly-2025-002"}, {"url": "https://www.kb.cert.org/vuls/id/538470"}], "x_generator": {"engine": "VINCE 3.0.26", "env": "prod", "origin": "https://cveawg.mitre.org/api/cve/CVE-2025-11577"}, "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2025-10-14T15:34:09.651Z"}}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "PHYSICAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-10-15T13:17:29.919651Z", "id": "CVE-2025-11577", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-15T13:17:44.736Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "PHYSICAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-11577", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-10-15T13:17:29.919651Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-15T13:11:50.463Z"}}], "cna": {"title": "Clevo UEFI firmware exposed Boot Guard private keys, enabling potential abuse of the Boot Guard trust chain", "source": {"discovery": "EXTERNAL"}, "affected": [{"vendor": "Clevo", "product": "Notebook System Firmware", "versions": [{"status": "affected", "version": "1.07.07TRO1"}]}], "references": [{"url": "https://www.binarly.io/advisories/brly-2025-002"}, {"url": "https://www.kb.cert.org/vuls/id/538470"}], "x_generator": {"env": "prod", "engine": "VINCE 3.0.26", "origin": "https://cveawg.mitre.org/api/cve/CVE-2025-11577"}, "descriptions": [{"lang": "en", "value": "Clevo\u2019s UEFI firmware update packages, including B10717.exe, inadvertently contained private signing keys used for Boot Guard and Boot Policy Manifest verification. The exposure of these keys could allow attackers to sign malicious firmware that appears trusted by affected systems, undermining the integrity of the early boot process."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-321 Use of Hard\u2011coded Cryptographic Key"}]}], "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2025-10-14T15:34:09.651Z"}}}, "cveMetadata": {"cveId": "CVE-2025-11577", "state": "PUBLISHED", "dateUpdated": "2025-10-15T13:17:44.736Z", "dateReserved": "2025-10-10T02:08:14.733Z", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "datePublished": "2025-10-14T15:34:09.651Z", "assignerShortName": "certcc"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Clevo\u2019s UEFI firmware update packages, including B10717.exe, inadvertently contained private signing keys used for Boot Guard and Boot Policy Manifest verification. The exposure of these keys could allow attackers to sign malicious firmware that appears trusted by affected systems, undermining the integrity of the early boot process."}], "id": "CVE-2025-11577", "lastModified": "2025-10-15T14:15:39.760", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.9, "impactScore": 6.0, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-10-14T16:15:36.317", "references": [{"source": "cret@cert.org", "url": "https://www.binarly.io/advisories/brly-2025-002"}, {"source": "cret@cert.org", "url": "https://www.kb.cert.org/vuls/id/538470"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Awaiting Analysis"}

{}

{"created": "2025-10-21T09:42:53.692188+00:00", "updated": "2025-10-21T09:42:53.692214+00:00", "vendors": ["clevo", "clevo$PRODUCT$notebook_system_firmware"]}