![Apple Releases iOS 18.4 RC 2 and iPadOS 18.4 RC 2 to Developers [Download]](https://www.iclarified.com/images/news/96860/96860/96860-640.jpg)
![Amazon Drops Renewed iPhone 15 Pro Max to $762 [Big Spring Deal]](https://www.iclarified.com/images/news/96858/96858/96858-640.jpg)
![[The AI Show Episode 141]: Road to AGI (and Beyond) #1 — The AI Timeline is Accelerating](https://www.marketingaiinstitute.com/hubfs/ep%20141.1.png)
![[The AI Show Episode 140]: New AGI Warnings, OpenAI Suggests Government Policy, Sam Altman Teases Creative Writing Model, Claude Web Search & Apple’s AI Woes](https://www.marketingaiinstitute.com/hubfs/ep%20140%20cover.png)
![[The AI Show Episode 139]: The Government Knows AGI Is Coming, Superintelligence Strategy, OpenAI’s $20,000 Per Month Agents & Top 100 Gen AI Apps](https://www.marketingaiinstitute.com/hubfs/ep%20139%20cover-2.png)
![From broke musician to working dev. How college drop-out Ryan Furrer taught himself to code [Podcast #166]](https://cdn.hashnode.com/res/hashnode/image/upload/v1743189826063/2080cde4-6fc0-46fb-b98d-b3d59841e8c4.png?#)
![[FREE EBOOKS] The Ultimate Linux Shell Scripting Guide, Artificial Intelligence for Cybersecurity & Four More Best Selling Titles](https://www.javacodegeeks.com/wp-content/uploads/2012/12/jcg-logo.jpg){kind=logo}
![Mini Review: Rendering Ranger: R2 [Rewind] (Switch) - A Novel Run 'N' Gun/Shooter Hybrid That's Finally Affordable](https://images.nintendolife.com/0e9d68643dde0/large.jpg?#)
.jpg?#)
.png?#)
Clevo Devices Boot Guard Private Key Exposed Via Firmware Update Packages
Researchers have discovered a major security vulnerability affecting multiple gaming laptop models using Clevo hardware. Boot Guard private keys were found exposed within firmware update packages, potentially allowing attackers to bypass critical security protections in affected devices. Researchers at Binary Research have uncovered that private cryptographic keys used in Intel’s Boot Guard security technology were […] The post Clevo Devices Boot Guard Private Key Exposed Via Firmware Update Packages appeared first on Cyber Security News.
Researchers have discovered a major security vulnerability affecting multiple gaming laptop models using Clevo hardware.
Boot Guard private keys were found exposed within firmware update packages, potentially allowing attackers to bypass critical security protections in affected devices.
Researchers at Binary Research have uncovered that private cryptographic keys used in Intel’s Boot Guard security technology were inadvertently exposed in firmware update packages for Clevo-based devices.
The discovery initially reported on the Win-Raid forum in late February 2025, represents a significant security breach that could allow attackers to bypass firmware validation mechanisms and potentially install malicious code at the UEFI firmware level.
Two private keys were embedded within the BootGuardKey.exe binary found in Clevo firmware packages, with copies also stored in files named “CreateDeleteBIOSKey.keyprivkey.pem” and “CreateDeleteBIOSKey.privkey.pem”.
Stop attacks before they start, powered by a 97% precise neural Network to Detect Cyber Attacks
Technical analysis verified these keys match the modules stored in the Boot Guard Key Manifest (KM) and Boot Policy Manifest (BPM) used in Clevo firmware images.
“This means that these keys can be used to sign a malicious firmware image that will pass validation at runtime, effectively bypassing Boot Guard,” researchers said.
Widespread Impact on Gaming Laptops
Binarly’s investigation revealed the extent of the vulnerability across the ecosystem. Using their Transparency Platform, researchers identified 15 firmware images containing the exposed keys, affecting 10 unique devices from manufacturers including Gigabyte and XPG.
The vulnerability is particularly concerning as it affects recently released devices, including the Gigabyte G6X 9KG which was released in early 2025. Security researchers note that other gaming-focused vendors using Clevo hardware might also be affected.
Security Implications
Boot Guard is an Intel technology designed to protect systems against firmware-level attacks by cryptographically verifying firmware integrity during the boot process.
When private keys are compromised, malicious actors could theoretically craft unauthorized firmware that would still pass security checks.
Similar incidents have occurred previously, as when the HardenedLinux team demonstrated how Boot Guard keys leaked during the MSI data breach could be exploited to bypass security measures on MSI devices.
Binarly reported their findings to CERT/CC on February 28, 2025, as vulnerability BRLY-2025-002, but according to researchers, “the case was closed a few days later without much explanation.”
This incident highlights ongoing challenges in firmware supply chain security.
As the UEFI ecosystem becomes increasingly complex, with original design manufacturers (ODMs) like Clevo supplying hardware to multiple vendors, a single security lapse can have far-reaching consequences.
Security experts recommend that affected manufacturers issue firmware updates that use newly generated cryptographic keys, though this process is complex and requires coordination with Intel and affected system vendors.
Users of affected devices should apply any security updates provided by manufacturers promptly, though the fundamental vulnerability may persist until hardware replacement occurs in some cases.
Investigate Real-World Malicious Links & Phishing Attacks With Threat Intelligence Lookup - Try for Free
The post Clevo Devices Boot Guard Private Key Exposed Via Firmware Update Packages appeared first on Cyber Security News.
