Do Endpoint Protection or Endpoint Security help prevent the exploitation of LogoFAIL?
search cancel

Do Endpoint Protection or Endpoint Security help prevent the exploitation of LogoFAIL?

book

Article ID: 277143

calendar_today

Updated On:

Products

Endpoint Protection Endpoint Security

Issue/Introduction

LogoFAIL is a vulnerability in the UEFI BIOS. LogoFAIL vulnerabilities can compromise the security of the entire system rendering "below-the-OS" security measures completely ineffective (e.g., Secure Boot). Do SEP or SES help prevent the exploitation of this vulnerability?

Environment

Various

Cause

UEFI BIOS Issues

Resolution

After investigation, Broadcom has determined that coverage is not feasible for this vulnerability within the product due to the nature of the exploitation. As further updates are released, vendor-level remediation should be applied.

Additional Information

CVE-2023-5058

CVE-2023-39538

CVE-2023-39539

CVE-2023-40238

LogoFAIL Disclosure