LogoFAIL: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
Line 1: | Line 1: | ||
{{Infobox VLN | |||
| name = LogoFAIL | |||
| image = logofail.png | |||
| caption = LogoFAIL logo by Binarly, Inc. | |||
| discovered = 2023 | |||
}} | |||
'''LogoFAIL''' is a vulnerability in [[Unified Extensible Firmware Interface|UEFI]]. | '''LogoFAIL''' is a vulnerability in [[Unified Extensible Firmware Interface|UEFI]]. | ||
Line 9: | Line 16: | ||
=== Scope === | === Scope === | ||
LogoFAIL affects almost all UEFI based systems, and thus most PCs built since 2011. | LogoFAIL affects almost all UEFI based systems, and thus most PCs built since 2011. It does not affect older [[BIOS]] based systems. LogoFAIL vulnerabilities can cause a system to be compromised in a way that is very hard - if not impossible - to detect. | ||
=== Security Response === | === Security Response === | ||
Line 16: | Line 23: | ||
=== Vulnerability Table === | === Vulnerability Table === | ||
The Fixed Firmware indicates the first version of firmware with a fix included. You should run that, or any later version. Seda recommends the latest firmware for your board. | |||
{| class="wikitable" style="margin:auto; text-align: center" | {| class="wikitable" style="margin:auto; text-align: center" | ||
|+ Seda's Enhancements Supported Devices | |+ Seda's Enhancements Supported Devices - Vulnerability to LogoFAIL | ||
! | ! Mainboard !! Status !! Latest Firmware !! Fixed Firmware !! Link !! Notes | ||
|- | |- | ||
| | | PRIME A320M-E | ||
| | | Patched | ||
| | | 6211 | ||
| | | 6211 | ||
| | | {{cite web |title=Firmware Updates |url=https://www.asus.com/au/supportonly/prime%20a320m-e/helpdesk_bios/}} | ||
| | | | ||
|- | |- | ||
| | | TUF SABERTOOTH 990FX | ||
| Vulnerable | | Vulnerable | ||
| | | 1604 | ||
| | | | ||
| | | {{cite web |title=Firmware Updates |url=https://www.asus.com/us/supportonly/sabertooth%20990fx/helpdesk_bios/}} | ||
| No patch is expected for this board. | |||
|- | |- | ||
| | | TUF SABERTOOTH 990FX R2.0 | ||
| Vulnerable | | Vulnerable | ||
| | | 2901 | ||
| | | | ||
| | | {{cite web |title=Firmware Updates |url=https://www.asus.com/uk/supportonly/sabertooth_990fx_r20/helpdesk_bios/}} | ||
| | | No patch is expected for this board. | ||
| | |||
| | |||
|- | |- | ||
| | | TUF SABERTOOTH 990FX R3.0 | ||
| Vulnerable | | Vulnerable | ||
| | | 0216 | ||
| | | | ||
| | | {{cite web |title=Firmware Updates |url=https://www.asus.com/ie/supportonly/sabertooth%20990fx%20r3.0/helpdesk_bios/}} | ||
| No patch is expected for this board. | |||
|- | |- | ||
| | | TUF GAMING B550M-PLUS WIFI II | ||
| Patched | |||
| 3405 | |||
| 3405 | |||
| {{cite web |title=Firmware Updates |url=https://www.asus.com/motherboards-components/motherboards/tuf-gaming/tuf-gaming-b550m-plus-wifi-ii/helpdesk_bios}} | |||
| | |||
| | |||
| | |||
| | |||
| | |||
| | |||
| | |||
| | |||
|} | |} |
Revision as of 17:27, 24 January 2024
Discovered | 2023 |
---|---|
LogoFAIL is a vulnerability in UEFI.
Context
Discovery
LogoFAIL was discovered by Binarly Inc in late 2023.
Scope
LogoFAIL affects almost all UEFI based systems, and thus most PCs built since 2011. It does not affect older BIOS based systems. LogoFAIL vulnerabilities can cause a system to be compromised in a way that is very hard - if not impossible - to detect.
Security Response
This cannot be fully addressed in software. The only real fix is a firmware update.
Vulnerability Table
The Fixed Firmware indicates the first version of firmware with a fix included. You should run that, or any later version. Seda recommends the latest firmware for your board.
Mainboard | Status | Latest Firmware | Fixed Firmware | Link | Notes |
---|---|---|---|---|---|
PRIME A320M-E | Patched | 6211 | 6211 | "Firmware Updates". | |
TUF SABERTOOTH 990FX | Vulnerable | 1604 | "Firmware Updates". | No patch is expected for this board. | |
TUF SABERTOOTH 990FX R2.0 | Vulnerable | 2901 | "Firmware Updates". | No patch is expected for this board. | |
TUF SABERTOOTH 990FX R3.0 | Vulnerable | 0216 | "Firmware Updates". | No patch is expected for this board. | |
TUF GAMING B550M-PLUS WIFI II | Patched | 3405 | 3405 | "Firmware Updates". |