6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%
The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.
lkml.org/lkml/2020/9/15/1871