Bypass Vulnerability Discovered in Secure Boot Security Feature
CVE-2023-24932
Key Information:
- Vendor
- Microsoft
- Status
- Vendor
- CVE Published:
- 9 May 2023
Badges
Summary
A significant vulnerability exists within the Secure Boot feature of various Microsoft products. This security concern could allow cybercriminals to bypass the Secure Boot mechanism, potentially granting them unauthorized access to critical system components. As Secure Boot is designed to prevent the loading of unauthorized firmware and operating systems, the exploitation of this flaw poses substantial risks to the integrity and security of affected systems. Organizations using vulnerable Microsoft products should prioritize applying necessary patches and updates to safeguard their environments.
Affected Version(s)
Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.20710
Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7159
Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6054
Get notified when SecurityVulnerability.io launches alerting 🔔
Well keep you posted 📧
News Articles
Microsoft script updates bootable media for BlackLotus bootkit fixes
Microsoft has released a PowerShell script to help Windows users and admins update bootable media so it utilizes the new
New Microsoft script updates Windows media with bootkit malware fixes
Microsoft has released a PowerShell script to help Windows users and admins update bootable media so it utilizes the new
Four zero-days fixed for September Patch Tuesday | TechTarget
September Patch Tuesday resolves four zero-days with the most pressing one affecting the Windows Update feature.
References
CVSS V3.1
Timeline
- 💰
Used in Ransomware
- 👾
Exploit known to exist
- 📰
First article discovered by BleepingComputer
Vulnerability published
Vulnerability Reserved