ID:8907 - Exploit for Security features bypass in Windows and Windows Server - CVE-2022-21894

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:8907 - Exploit for Security features bypass in Windows and Windows Server - CVE-2022-21894

ID:8907 - Exploit for Security features bypass in Windows and Windows Server - CVE-2022-21894

Published: March 13, 2023


Vulnerability identifier: #VU59498
Vulnerability risk: Low
CVE-ID: CVE-2022-21894
CWE-ID: CWE-254
Exploitation vector: Local access
Vulnerable software:
Windows
Windows Server

Link to public exploit:


Vulnerability description

The vulnerability allows a local user to bypass implemented security restrictions.

the vulnerability exists due to an error in Secure Boot implementation. A local user can bypass implemented security restrictions.


Remediation

Install updates from vendor's website.