3615 matches found
CVE-2026-49783
Improperly implemented security check for standard in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
CVE-2026-49783 Secure Boot Security Feature Bypass Vulnerability
...
CVE-2026-49783
CVE-2026-49783 is a Windows Secure Boot issue described as an improperly implemented security check for the standard, enabling a local attacker with low privileges to bypass a security feature. The CVSS v3.1 base score is 7.8 (HIGH) with local attack vector, low attack complexity, no user interac...
CVE-2026-49783 Secure Boot Security Feature Bypass Vulnerability
...
June 9, 2026—KB5094041 (Monthly Rollup)
None None...
June 9, 2026—KB5094042 (Monthly Rollup)
None None...
Secure Boot Security Feature Bypass Vulnerability
Improperly implemented security check for standard in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
PT-2026-58157
Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description An improperly implemented security check for standard in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. This issue is particularly critical for server...
edk2 security, bug fix, and enhancement update
An update is available for edk2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list EDK Embedded Development Kit is a project to enable UEFI support for Virtual...
Moderate: Red Hat Security Advisory: edk2 security, bug fix, and enhancement update
An update for edk2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Astra Linux – Vulnerability in grub2
A flaw was discovered in grub2. A specially crafted JPEG file can cause the JPEG parser in grub2 to incorrectly check the boundaries of its internal buffers, leading to an out-of-bounds write. The possibility of overwriting sensitive information to bypass secure boot protections is still a concer...
Astra Linux – Vulnerability in grub2
A flaw was discovered in grub2. The calculation of the translation buffer when reading a language .mo file in grubgettextgetstrfromposition may overflow, resulting in an out-of-bound write. This issue can be exploited by an attacker to overwrite grub2’s sensitive heap data, ultimately allowing th...
Astra Linux – Vulnerability in grub2
When reading the .mo file in grubmofileopen, grub2 fails to verify an integer overflow during the allocation of its internal buffer. A specially crafted .mo file may cause the buffer size calculation to overflow, resulting in out-of-bound reads and writes. This flaw allows an attacker to leak...
June 23, 2026—KB5095093 (OS Builds 26200.8737 and 26100.8737) Preview
None None...
PT-2026-50773
11 forgotten, still-trusted UEFI shims v0.9 and below bypass Secure Boot on any system enrolling the Microsoft Corporation UEFI CA 2011 certificate. CVE-2026-8863 and CVE-2026-10797 assigned; revoked in Microsoft's June 9 2026 Patch Tuesday dbx update. - The core risk is not a novel bug: any...
Vendor-signed UEFI applications found vulnerable to Secure Boot bypass
Overview Multiple vendor-signed UEFI applications are vulnerable to Secure Boot bypass via a "Bring Your Own Vulnerable Driver" BYOVD-style attack. If a target system trusts the affected vendor’s certificate, an attacker can exploit these applications to execute arbitrary code during the early...
SUSE CVE-2026-8863
Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the...
CVE-2026-48573
Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
CVE-2026-48570
Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
CVE-2026-48576
Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...