CVE-2020-26200

MEDIUM

Kaspersky Endpoint Security and Rescue Disk - Improper Authentication via Untrusted UEFI Module Loading

Title source: llm

Description

A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk (KRD) and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security (KES). This issue allowed to bypass the UEFI Secure Boot security feature. An attacker would need physical access to the computer to exploit it. Otherwise, local administrator privileges would be required to modify the boot loader component.

References (2)

Core 2

Core References

Broken Link x_refsource_misc

https://support.kaspersky.com/general/vulnerability.aspx?el=12430#170221

Third Party Advisory

https://github.com/CVEProject/cvelist/blob/master/2020/26xxx/CVE-2020-26200.json

View Writeup ZIP pw:eip

Scores

CVSS v3 6.8

EPSS 0.0023

EPSS Percentile 13.8%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-287

Status published

Products (5)

kaspersky/endpoint_security 10 sp2_mr2 (2 CPE variants)

kaspersky/endpoint_security 11.0.0

kaspersky/endpoint_security 11.0.1

kaspersky/endpoint_security 11.1.0

kaspersky/rescue_disk < 18.0.11.3

Published Feb 26, 2021

Tracked Since Feb 18, 2026