Edk2
1 CVEs
product
Monthly
The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Rated low severity (CVSS 3.7), this vulnerability is no authentication required.
Authentication Bypass
Ubuntu
Edk2
NVD
CVSS 4.0
3.7
EPSS
0.0%
CVE-2025-2486
EPSS 0%
CVSS 3.7
LOW
PATCH
Monitor
The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Rated low severity (CVSS 3.7), this vulnerability is no authentication required.
Authentication Bypass
Ubuntu
Edk2
NVD