CVE-2022-1665
HIGHRed Hat Enterprise Linux for IBM Power - Privilege Escalation
Title source: llmDescription
A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. These kernel builds don't have the secure boot lockdown patches applied to it and can bypass the secure boot validations, allowing the attacker to load another non-trusted code.
References (1)
Core 1
Core References
Issue Tracking, Vendor Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=2089529
Scores
CVSS v3
8.2
EPSS
0.0005
EPSS Percentile
16.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-1291
Status
published
Products (1)
redhat/enterprise_linux
8.0
Published
Jun 21, 2022
Tracked Since
Feb 18, 2026