Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.6
Red Hat EDK2 Update Fixes Multiple Security Risks for Servers
RHSA-2026:2771
Summary
A security update has been released for the EDK2 firmware, which is used in some Red Hat servers. This update addresses multiple security risks that could allow an attacker to take control of the firmware or access sensitive data. To protect your servers, update to the latest version of EDK2 as soon as possible.
What to do
- Update redhat edk2 to version 0:20241117-2.el9_6.2.
- Update redhat edk2-aarch64 to version 0:20241117-2.el9_6.2.
- Update redhat edk2-debugsource to version 0:20241117-2.el9_6.2.
- Update redhat edk2-ovmf to version 0:20241117-2.el9_6.2.
- Update redhat edk2-tools to version 0:20241117-2.el9_6.2.
- Update redhat edk2-tools-debuginfo to version 0:20241117-2.el9_6.2.
- Update redhat edk2-tools-doc to version 0:20241117-2.el9_6.2.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| redhat | edk2 | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-aarch64 | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-debugsource | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-ovmf | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-tools | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-tools-debuginfo | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-tools-doc | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2 | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-aarch64 | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-debugsource | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-ovmf | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-tools | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-tools-debuginfo | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
| redhat | edk2-tools-doc | <= 0:20241117-2.el9_6.2 | 0:20241117-2.el9_6.2 |
Original title
Red Hat Security Advisory: edk2 security update
osv CVSS3.1
5.6
- https://access.redhat.com/errata/RHSA-2026:2771 Vendor Advisory
- https://access.redhat.com/security/updates/classification/#low Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2396054 Third Party Advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_2771.j... Vendor Advisory
- https://access.redhat.com/security/cve/CVE-2025-9230 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2025-9230 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-9230 Vendor Advisory
Published: 18 Feb 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026