CVE-2021-28213

Summary

Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks.

Affected Software

VendorProductVersion RangeStatus
TianoCoreEDK IIedk2-stable201905affected

Weaknesses

  • Replacing example EDK II encrypted private key stored in PcdIpsecUefiCertificateKey presents potential security risks that will expose manufacturer key pair in EDK II.

ADP Enrichment

CVE Program Container

Additional References

References