{"id":23180,"date":"2026-07-16T19:10:30","date_gmt":"2026-07-16T19:10:30","guid":{"rendered":"https:\/\/akdenizolay.com.tr\/index.php\/2026\/07\/16\/eset-guvenli-onyukleme-korumasini-tehlikeye-atan-kritik-aciklari-ortaya-cikardi\/"},"modified":"2026-07-16T19:10:31","modified_gmt":"2026-07-16T19:10:31","slug":"eset-guvenli-onyukleme-korumasini-tehlikeye-atan-kritik-aciklari-ortaya-cikardi","status":"publish","type":"post","link":"https:\/\/akdenizolay.com.tr\/index.php\/2026\/07\/16\/eset-guvenli-onyukleme-korumasini-tehlikeye-atan-kritik-aciklari-ortaya-cikardi\/","title":{"rendered":"ESET, G\u00fcvenli \u00d6ny\u00fckleme Korumas\u0131n\u0131 Tehlikeye Atan Kritik A\u00e7\u0131klar\u0131 Ortaya \u00c7\u0131kard\u0131"},"content":{"rendered":"<p> <strong>Siber g\u00fcvenlik alan\u0131nda k\u00fcresel bir lider olan ESET, sald\u0131rganlar\u0131n on y\u0131ll\u0131k g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanarak UEFI G\u00fcvenli \u00d6ny\u00fckleme&#8217;yi atlatmas\u0131na olanak tan\u0131yan, Microsoft taraf\u0131ndan imzalanm\u0131\u015f 11 adet g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan UEFI ara katman \u00f6ny\u00fckleyicisi ke\u015ffetti.\u00a0<\/strong><\/p>\n<p><strong>UEFI ara katman \u00f6ny\u00fckleyiciler, anakart UEFI bellenimi ile i\u015fletim sistemi aras\u0131ndaki bo\u015flu\u011fu doldurmak \u00fczere tasarlanm\u0131\u015f k\u00fc\u00e7\u00fck kod par\u00e7alar\u0131. 0.9 ve daha eski s\u00fcr\u00fcmlerdeki g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan ara katmanlar, y\u00fckl\u00fc i\u015fletim sisteminden ba\u011f\u0131ms\u0131z olarak, Microsoft Corporation UEFI CA 2011 \u00fc\u00e7\u00fcnc\u00fc taraf UEFI sertifika yetkilisi (CA) sertifikas\u0131na g\u00fcvenen herhangi bir UEFI tabanl\u0131 makinede UEFI G\u00fcvenli \u00d6ny\u00fckleme&#8217;yi atlatmak i\u00e7in kullan\u0131labilir.\u00a0<\/strong><\/p>\n<p><strong>\u00a0Bildirilen ara katmanlar, sistem \u00f6ny\u00fcklemesi s\u0131ras\u0131nda g\u00fcvenilmeyen kodlar\u0131 \u00e7al\u0131\u015ft\u0131rmak i\u00e7in istismar edilebilir; bu da sald\u0131rganlar\u0131n, UEFI G\u00fcvenli \u00d6ny\u00fckleme&#8217;nin etkin oldu\u011fu sistemlerde bile k\u00f6t\u00fc ama\u00e7l\u0131 UEFI bootkit&#8217;leri yerle\u015ftirmelerine olanak tan\u0131r. ESET, bulgular\u0131n\u0131 CERT\/CC&#8217;ye bildirdi; ard\u0131ndan g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan UEFI uygulamalar\u0131n\u0131n sertifikalar\u0131 iptal edildi.\u00a0<\/strong><\/p>\n<p>Ke\u015ffedilen ara katmanlar, PC tan\u0131lama yaz\u0131l\u0131mlar\u0131, Linux da\u011f\u0131t\u0131mlar\u0131 ve di\u011fer UEFI tabanl\u0131 yard\u0131mc\u0131 programlar d\u00e2hil olmak \u00fczere \u00e7e\u015fitli ara\u00e7lardan veya yaz\u0131l\u0131m paketlerinden kaynaklan\u0131yor. \u00d6nemli bir nokta olarak, sald\u0131rganlar Microsoft \u00fc\u00e7\u00fcnc\u00fc taraf UEFI sertifikas\u0131n\u0131n kay\u0131tl\u0131 oldu\u011fu herhangi bir UEFI sistemine g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan ara katmanlar\u0131n kendi kopyalar\u0131n\u0131 getirebildikleri i\u00e7in istismar sadece etkilenen yaz\u0131l\u0131m veya i\u015fletim sisteminin y\u00fckl\u00fc oldu\u011fu sistemlerle s\u0131n\u0131rl\u0131 de\u011fil.<\/p>\n<p>G\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan ara katmanlar\u0131 ke\u015ffeden\u00a0<strong>ESET ara\u015ft\u0131rmac\u0131s\u0131 Martin Smol\u00e1r;\u00a0<\/strong>\u201cBu eski ara katmanlar\u0131 tehlikeli k\u0131lan \u015fey, yeni bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 de\u011fil; UEFI G\u00fcvenli \u00d6ny\u00fckleme\u2019yi atlatmak i\u00e7in yeni bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131na gerek olmamas\u0131d\u0131r. Bir sald\u0131rgan\u0131n karma\u015f\u0131k istismar y\u00f6ntemlerine ihtiyac\u0131 yoktur \u2014 sadece eski, h\u00e2l\u00e2 g\u00fcvenilir ancak iptal edilmemi\u015f bir ara katman ikili dosyas\u0131n\u0131n bir kopyas\u0131 ve UEFI ara katmanlar\u0131n\u0131n nas\u0131l \u00e7al\u0131\u015ft\u0131\u011f\u0131na dair temel bir anlay\u0131\u015f yeterlidir. Bu, UEFI G\u00fcvenli \u00d6ny\u00fckleme gibi hayati bir g\u00fcvenlik \u00f6zelli\u011fini atlatmak i\u00e7in yeterlidir. Okuyucular\u0131n bu t\u00fcr g\u00fcvenlik a\u00e7\u0131\u011f\u0131 i\u00e7eren ara katmanlar\u0131n UEFI G\u00fcvenli \u00d6ny\u00fckleme ile korunan sistemler \u00fczerinde yaratabilece\u011fi etkiyi daha iyi anlamalar\u0131na yard\u0131mc\u0131 olmak amac\u0131yla raporda bildirilen ara katmanlardaki birka\u00e7 spesifik sorun incelenmi\u015ftir \u2014 bu sorunlar kolayca istismar edilebilir nitelikte olup, ortaya \u00e7\u0131kard\u0131klar\u0131 sald\u0131r\u0131 y\u00fczeyinin geni\u015fli\u011fini vurgulamaktad\u0131r\u201d a\u00e7\u0131klamas\u0131n\u0131 yapt\u0131.<\/p>\n<p>Y\u0131llar i\u00e7inde, UEFI ara katman \u00f6ny\u00fckleyicisi do\u011fal olarak geli\u015fti; \u00fcst ak\u0131\u015f UEFI ara katman deposunun ard\u0131\u015f\u0131k s\u00fcr\u00fcmlerinde yeni iyile\u015ftirmeler ve g\u00fcvenlik \u00f6zellikleri eklendi. Ayn\u0131 zamanda, bir\u00e7ok \u00fc\u00e7\u00fcnc\u00fc taraf sat\u0131c\u0131, ara katman kaynak kodunun mevcut s\u00fcr\u00fcmlerini kullanarak kendi ikili dosyalar\u0131n\u0131 olu\u015fturmu\u015f ve bunlar\u0131 daha sonra imzalanmas\u0131 i\u00e7in Microsoft\u2019a sunmu\u015ftur. Bu davran\u0131\u015f beklenen bir durumdur ve ara katmanlar\u0131n orijinal tasar\u0131m\u0131yla uyumludur. Ancak Microsoft taraf\u0131ndan imzalanm\u0131\u015f ve art\u0131k ge\u00e7erlili\u011fini yitirmi\u015f ara katmanlar\u0131n iptal edilmesine yeterince \u00f6nem verilmemi\u015ftir; bu ara katmanlar\u0131n \u00e7o\u011fu, tasar\u0131mlar\u0131 gere\u011fi, daha yeni g\u00fcvenlik mekanizmalar\u0131n\u0131 atlatmak i\u00e7in kullan\u0131labilir.\u00a0<\/p>\n<p>Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan ara katmanlar, Microsoft\u2019tan al\u0131nan en son UEFI iptal listeleri uygulanarak engellenebilir. Windows sistemleri otomatik olarak g\u00fcncellenmelidir. Linux sistemleri i\u00e7in ise g\u00fcncellemeler, Linux Vendor Firmware Service arac\u0131l\u0131\u011f\u0131yla sa\u011flanmal\u0131d\u0131r. Bilinmeyen, g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan imzal\u0131 UEFI \u00f6ny\u00fckleyicilerin istismar edilmesine ve UEFI bootkit&#8217;lerin da\u011f\u0131t\u0131m\u0131na kar\u015f\u0131 nas\u0131l korunulaca\u011f\u0131na (veya en az\u0131ndan bunlar\u0131n nas\u0131l tespit edilece\u011fine) ili\u015fkin daha genel \u00f6neriler i\u00e7in ESET Research blog yaz\u0131s\u0131 \u201cUEFI G\u00fcvenli \u00d6ny\u00fckleme&#8217;nin perdesi arkas\u0131nda: CVE-2024-7344&#8217;\u00fcn tan\u0131t\u0131m\u0131\u201dna bak\u0131labilir.<\/p>\n<p>\u00a0<\/p>\n<p>Kaynak: (BYZHA) Beyaz Haber Ajans\u0131<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Siber g\u00fcvenlik alan\u0131nda k\u00fcresel bir lider olan ESET, sald\u0131rganlar\u0131n on y\u0131ll\u0131k g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanarak UEFI G\u00fcvenli \u00d6ny\u00fckleme&#8217;yi atlatmas\u0131na olanak tan\u0131yan, Microsoft taraf\u0131ndan imzalanm\u0131\u015f 11 adet g\u00fcvenlik a\u00e7\u0131\u011f\u0131 bulunan UEFI ara katman \u00f6ny\u00fckleyicisi ke\u015ffetti.<\/p>\n","protected":false},"author":1,"featured_media":23181,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-23180","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-teknoloji"],"_links":{"self":[{"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/posts\/23180","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/comments?post=23180"}],"version-history":[{"count":1,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/posts\/23180\/revisions"}],"predecessor-version":[{"id":23182,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/posts\/23180\/revisions\/23182"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/media\/23181"}],"wp:attachment":[{"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/media?parent=23180"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/categories?post=23180"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/akdenizolay.com.tr\/index.php\/wp-json\/wp\/v2\/tags?post=23180"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}