AI description
CVE-2026-48568 describes a protection mechanism failure within Windows Secure Boot. This vulnerability allows an authorized attacker with local access to bypass a security feature. Secure Boot is designed to ensure that only trusted operating system code executes during the boot process by verifying digital signatures of boot components against a trusted certificate store. The flaw stems from weaknesses in how Windows handles certificate validation or boot process verification. An attacker who already possesses local administrative privileges can exploit implementation gaps in the Secure Boot enforcement mechanisms, potentially through manipulating boot configuration data, modifying the certificate store, or exploiting legitimate administrative tools. This circumvents security checks that would typically prevent the execution of unsigned or untrusted bootloaders and operating system components.
- Description
- Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
- Source
- secure@microsoft.com
- NVD status
- Undergoing Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 7.9
- Impact score
- 5.8
- Exploitability score
- 1.5
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
- Severity
- HIGH
- secure@microsoft.com
- CWE-693
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
9