Medium
CVSS 6.5
Overview
A lack of signature verification in the bootloader of DENX Software Engineering Das U-Boot (U-Boot) v1.1.3 allows attackers to install crafted firmware files, leading to arbitrary code execution.
CVE-2025-45512
A lack of signature verification in the bootloader of DENX Software Engineering ...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 6.5 (MEDIUM)
- Detected tags: rce (tag impact: VERY HIGH)
Recommended actions:
- Patch/upgrade immediately (remote code execution).
- Reduce exposure (WAF/segmentation), minimize attack surface.