Description
Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
Published: 2026-06-09
Score: 7.9 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a protection mechanism failure in Windows Secure Boot that allows an authorized attacker to bypass a security feature locally. Because Secure Boot is designed to verify that the firmware and operating system components are legitimate, the flaw permits execution of unsigned or tampered code that would normally be prevented. The weakness is an improper access control flaw (CWE‑284). It does not provide a remote attack vector and is limited to users with local privileges, but an exploit could compromise boot integrity and elevate privileges or introduce persistent malware.

Affected Systems

Affected workloads include Microsoft Windows 11 versions 24H2, 25H2, and 26H1 on both ARM64 and x64 architectures, as well as Windows Server 2025 with Server Core installations.

Risk and Exploitability

With a CVSS score of 7.9 the flaw is considered high severity. No EPSS score or KEV listing is available, indicating no widespread exploitation data yet. The attack vector is inferred to be local; an attacker must have access to the machine to modify boot configurations or firmware signatures. Once enabled, the vulnerability could allow the attacker to bypass Secure Boot checks, potentially leading to privilege escalation or persistent compromise.

Generated by OpenCVE AI on June 9, 2026 at 19:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install the latest Microsoft security update that resolves CVE‑2026‑45654 as shown in the Microsoft Security Response Center update guide.
  • Restrict administrative access to the UEFI firmware settings so that only trusted administrators can modify Secure Boot configuration, thereby enforcing proper access control (CWE‑284).
  • After updating and rebooting, verify that Secure Boot remains enabled and that no unauthorized firmware changes have occurred.

Generated by OpenCVE AI on June 9, 2026 at 19:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
Title Secure Boot Security Feature Bypass Vulnerability
First Time appeared Microsoft
Microsoft windows 11 24h2
Microsoft windows 11 25h2
Microsoft windows 11 26h1
Microsoft windows Server 2025
Weaknesses CWE-284
CPEs cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:arm64:*
cpe:2.3:o:microsoft:windows_11_25H2:*:*:*:*:*:*:arm64:*
cpe:2.3:o:microsoft:windows_11_26H1:*:*:*:*:*:*:arm64:*
cpe:2.3:o:microsoft:windows_11_26H1:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft windows 11 24h2
Microsoft windows 11 25h2
Microsoft windows 11 26h1
Microsoft windows Server 2025
References
Metrics cvssV3_1

{'score': 7.9, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Windows 11 24h2 Windows 11 25h2 Windows 11 26h1 Windows Server 2025
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-06-09T21:50:56.640Z

Reserved: 2026-05-12T20:33:35.157Z

Link: CVE-2026-45654

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-09T17:17:32.460

Modified: 2026-06-09T19:32:51.440

Link: CVE-2026-45654

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T19:45:12Z

Weaknesses