The issue affects 11 shim binaries that were still signed and accepted by systems enforcing Secure Boot. That signature is what allows code to run during the...

Eleven old Microsoft-signed UEFI shims could let admin-level attackers bypass Secure Boot and run code before the operating system loads

Old and forgotten "shims" Microsoft failed to revoke have made Secure Boot bypasses simple.

Una ricerca di ESET ha individuato 11 vecchi bootloader UEFI firmati da Microsoft che, pur essendo vulnerabili, sono rimasti attendibili per anni. Il problema consentiva di…

Windows 11 updates KB5101650 and KB5094126 fix a critical security flaw that remained undetected and unresolved for more than 10 years.

The issue affects 11 shim binaries that were still signed and accepted by systems enforcing Secure Boot. That signature is what allows code to run during the...

Nearly a dozen vulnerable and now revoked UEFI shim bootloaders remained trusted for years, giving attackers a path to bypass Secure Boot.

Old UEFI shim bootloaders could be abused to bypass Secure Boot on any UEFI-based machine, regardless of the operating system.