CVE-2023-5342 MEDIUM

CVE-2023-5342: Shim: expired secure boot certificate

Vendor Red Hat
Product Red Hat Enterprise Linux 10
Weakness CWE-324
Published August 15, 2025
Last update August 15, 2025

CVSS base score

4.1/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N

What the vulnerability does

01Description

The Fedora Secure Boot CA certificate shipped with shim in Fedora was expired which could lead to old or invalid signed boot components being loaded.

Key dates

02Disclosure timeline

August 15, 2025 CVE published
August 15, 2025 Record updated