vuln disclosure
CVE-2024-26180: Windows Secure Boot Security Feature Bypass VulnerabilityCVE-2024-26180
A vulnerability in Windows Secure Boot allows attackers with administrative privileges to bypass Secure Boot protections and install persistent bootkits or rootkits. The flaw stems from improper validation of bootloaders, enabling malicious EFI binaries to load despite Secure Boot being enabled. Microsoft released patches and updated blocklists in March 2024 to address the issue.