• deadcadeA
    link
    fedilink
    arrow-up
    45
    ·
    1 year ago

    Since the EFI partition is unencrypted, physical access would do the trick here too, even with every firmware/software security measure.

    • _edge@discuss.tchncs.de
      link
      fedilink
      arrow-up
      23
      ·
      1 year ago

      True, but this was the case without this finding, wasn’t it? With write access to the EFI you could replace the boot loader and do whatever you please.

      • deadcadeA
        link
        fedilink
        arrow-up
        3
        ·
        1 year ago

        Unless a proper secure boot + FDE setup is in place.