Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-45512

A lack of signature verification in the bootloader of DENX Software Engineering Das U-Boot (U-Boot) v1.1.3 allows attackers to install crafted firmware files, leading to arbitrary code execution.

Published

2025-08-05T19:15:32.637

Last Modified

2025-10-02T17:35:37.513

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-77

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	denx	u-boot	1.1.3	Yes

References

https://gist.github.com/AzhariRamadhan/a5c9644861f46b1eadb1f2a15c7950fe Exploit, Third Party Advisory ([email protected])
https://github.com/AzhariRamadhan/uboot-cve Exploit, Third Party Advisory ([email protected])