Is it possible for uefi bootkit infection through 3rd party nvme module

An EFI boot manager utility

Status: Beta

Brought to you by: srs5694

Is it possible for uefi bootkit infection through 3rd party nvme module

Forum: General Discussion

Creator: michael

Created: 2023-12-06

Updated: 2023-12-06

michael - 2023-12-06

I have been using rEFInd with a 3rd party nvme module to load the OS for several years.

What are the risks of these third party modules to introduce a rootkit?

Specifically, I am using the Dxe found at https://github.com/CloverHackyColor/CloverBootloader/tree/master/MdeModulePkg/Bus/Pci/NvmExpressDxe. Compiling just the module seemed complicated, so I just extracted a pre-compiled file.

I looked at the source code and there doesn't seem anything that poses a security risk. But in general, is it possible for third party Dxe files to carry malware or bootkits?

Thanks for your help.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.