Multiple Cisco UCS-Based Products UEFI Secure Boot Bypass Vulnerability

A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an authenticated, physical attacker to bypass Unified Extensible Firmware Interface (UEFI) Secure Boot validation checks and load a compromised software image on an affected device.

The vulnerability is due to improper validation of the server firmware upgrade images. An attacker could exploit this vulnerability by installing a server firmware version that would allow the attacker to disable UEFI Secure Boot. A successful exploit could allow the attacker to bypass the signature validation checks that are done by UEFI Secure Boot technology and load a compromised software image on the affected device. A compromised software image is any software image that has not been digitally signed by Cisco.

There are no workarounds that address this vulnerability. Cisco has released firmware updates that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200219-ucs-boot-bypass

Security Impact Rating: High

CVE: CVE-2019-1736

Related:

  • No Related Posts

Won’t stop booting to PC DOS

I need a solution

I am working on and older PC with Ghost 2003. I know, but it’s an old computer. In the Ghost program in Windows, I selected what I wanted to image. The computer then rebooted into PC DOS but never fully launched Ghost. Now the computer will NOT boot back to Windows. 2 questions – How do I get it to boot back to Windows (and selcting “Skip Ghost DOS and boot into Windows doean’t work) and 2nd question, I have previously Ghosted boot drive I can use but I am scared it will try to boot to PC DOS as well. Is the “Boot to DOS” iset in the BIOS or something on the drive? Can I use the other boot disk without a problem?

Thank you all so much. This is a ral important computer and I need to get it running again as soon as I can.

0

Related:

  • No Related Posts

Dell Latitude 7400

I need a solution

Anyone had luck using standalone ghost instances with a USB boot stick on Dell Latitude 7400? My WinPE instance hangs up and freezes when trying to load. I don’t even get as far as launching ghost. Just see a Windows logo, a loading circle at the bottom, then a flash and the machine freezes.

At first I was getting just a black screen so I loaded the graphics drivers for this model into my boot ISO. Now it shows display but freezes. Have I put too many drivers in and am just burning up all the ram before I get to the ghost app? 

0

Related:

  • No Related Posts

External Keyboard not working

I need a solution

Hello,

We have SEE 11.2.0 MP1 installed and we have problems with external keyboard during PGP Login. We have found this note: https://www.symantec.com/connect/forums/external-keyboard-not-working-during-pgp-login

After disable Fast Boot, if the laptop is shutdown, external keyboard not woking in the first boot however the next boots external keyboard works until the next shutdown.

Any ideas?

Thanks

0

Related:

  • No Related Posts

DLP 15.5: Enforce unable to add Endpoint server – received red banner error

I need a solution

Hi All,

Any idea of bellow error?

An unexpected error has occurred. This could be due to one of the following: 1) Your session timed out and you selected a link that was no longer valid, 2) You used the browser back or forward button placing the system into an inconsistent state, or 3) The system experienced a temporary problem.

This appear after we deleted DLP Endpoint server and tries to add it back, it will just keep prompting in a loop

Tried to restart Enforce services and evern rebooted it

DLP is 3 tier setup

0

Related:

  • No Related Posts

No PXE-Boot when assigning job, otherwise PXE works

I do not need a solution (just sharing information)

Dear,

PXE is set up and works in my opinion.

On all clients, PXE-Boot is set as the first boot method, each client first queries the PXE server at boot time and then executes the PXE-Boot according to my settings: For clients known in the console, the PXE-Boot-Menu waits 5 seconds, then the boot from the local HDD with the locally installed operating system takes place. Clients not known in the console wait 10 seconds in the PXE boot menu and then start the Automation Agent via PXE.

If I assign an image deployment-job to a client known in the console, this client will restart as it should be. Then it should boot the Automation Agent via PXE so that the new image can be transferred to the hard disk. However, this is not the case. Instead, the PXE boot menu is displayed for max. 1 second, but it is exited immediately and the local operating system is booted from the local hard disk. The deployment-job is then shown as failed at the end.

What is the reason / What should I do?

Thanks in advance!

0

Related:

  • No Related Posts

Dell Latitude 5400

I need a solution

Has anyone had any luck booting these Dell 5400s from a USB drive?  Since legacy mode is dead, I’ve reformatted my Ghost Boot Disk to GPT with UEFI and the PC does NOT recognize the USB disk.  I’ve tried two different disks and in the boot menu I don’t see a USB device.  I’ve disabled Secure Boot and made sure USB support was enabled.  I tested my USB disk and it boots with my Surface (which is what I originally used this specific boot disk for).  I’ve tried all three USB ports on the PC.  HD is set to RAID on.

Thanks!

0

3183751

Related:

  • No Related Posts