BootHole Vulnerability (CVE-2020-10713)
Canon Medical Systems Security Advisory
It was announced that there is a security vulnerability in GRUB2 bootloader as "BootHole". And there is a possibility that an attacker who successfully exploited this vulnerability could bypass Secure Boot protections. The evaluation results of Common Vulnerability Scoring System (CVSS) is 8.2 and the degree of impact on confidentiality, integrity, and availability is also rated as "high".
Overview:
Note: This Vulnerability is currently awaiting updated analysis and represents our best knowledge as of the most recent revision. As a result, the content is subject to change as further analysis is performed and the results are updated.
Canon Medical Systems Corporation continues to investigate the applicability of this vulnerability to Medical Imaging Devices manufactured by Canon Medical Systems Corporation.
REFERENCE:
MITRE CVE-2020-10713
This vulnerability is applicable to Windows and Linux devices using Secure Boot. Canon Medical Systems Corporation does not manufacture any imaging products using Secure Boot.
Possible Affected Canon Medical Systems Products:
Affected Canon Medical Systems Products
・ None
Canon Medical Products under investigation
・ None
Resolution:
・ None
Due to medical device regulatory reasons, not all products/service displayed on this Canon Medical Systems global webpage are available in all countries, regions or markets. Future availability of the products/service cannot also be guaranteed. Please contact your local Canon Medical Systems representative for further details.
