CVE-2025-4275

Running the provided utility changes the certificate on any Insyde BIOS and then the attached .efi file can be launched.

Credits

Thanks to Nikolaj Schlej, independent firmware security researcher, for reporting the vulnerability and engaging in this coordinated disclosure.

References