By weakness (CWE)
CWE-1329: related vulnerabilities
CVEs classified under CWE-1329. Understanding the weakness class helps prioritize systemic fixes over one-off patches.
2 published vulnerabilities
- CVE-2026-48573HIGH 7.9
A vulnerability in Windows Secure Boot allows someone with high-level local access to bypass a key security feature that prevents unauthorized code from running during system startup. The flaw affects multiple versions of Windows 10, Windows 11, and Windows Server. While an attacker needs elevated privileges to exploit it, successful exploitation could allow them to circumvent protections that are meant to ensure only trusted software loads at boot time.
- CVE-2026-48576HIGH 7.9
CVE-2026-48576 is a high-severity security flaw in Windows Secure Boot that allows an authorized attacker with elevated privileges to bypass a critical security feature on local systems. Secure Boot is a foundational Windows security mechanism designed to prevent unauthorized code from executing during system startup. This vulnerability undermines that protection, potentially enabling an attacker to load unsigned or malicious firmware or bootloaders. The threat requires the attacker to already have administrative or system-level access, limiting the immediate attack surface, but the ability to circumvent Secure Boot represents a significant escalation once that initial access is obtained.