CVE-2023-24932

medium

Description

Secure Boot Security Feature Bypass Vulnerability

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932

https://www.bleepingcomputer.com/news/microsoft/new-microsoft-script-updates-windows-media-with-bootkit-malware-fixes/

https://www.darkreading.com/cyber-risk/bootkitty-first-bootloader-target-linux-systems

https://www.tenable.com/blog/microsoft-patch-tuesday-2023-year-in-review

https://www.tenable.com/blog/microsofts-may-2023-patch-tuesday-addresses-38-cves-cve-2023-29336

Details

Source: Mitre, NVD

Published: 2023-05-09

Updated: 2024-08-01

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 6.7

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Severity: Medium

EPSS

EPSS: 0.06501