vulnerability

Red Hat: CVE-2025-1272: kernel: Secure Boot does not automatically enable kernel lockdown (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:L/AC:M/Au:M/C:C/I:C/A:C)	Feb 13, 2025	May 15, 2025	Mar 27, 2026

Severity

CVSS

(AV:L/AC:M/Au:M/C:C/I:C/A:C)

Published

Feb 13, 2025

Added

May 15, 2025

Modified

Mar 27, 2026

Description

The Linux Kernel lockdown mode for kernel versions starting on 6.12 and above for Fedora Linux has the lockdown mode disabled without any warning. This may allow an attacker to gain access to sensitive information such kernel memory mappings, I/O ports, BPF and kprobes. Additionally unsigned modules can be loaded, leading to execution of untrusted code breaking breaking any Secure Boot protection. This vulnerability affects only Fedora Linux.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-306
EUVD-EUVD-2025-207808
NVD-CVE-2025-1272
REDHAT-RHSA-2025:6966
https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-207808

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report