Main Vulnerability Database Vulnerabilities #VU65214

#VU65214 Security features bypass in Windows Server and Windows - CVE-2022-30203

Published: July 12, 2022

Vulnerability identifier: #VU65214

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2022-30203

CWE-ID: CWE-254

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Windows Server
Windows

Software vendor:
Microsoft

Description

The vulnerability allows a local user to bypass authentication process.

The vulnerability exists due to security feature bypass issue in Windows Boot Manager. An authenticated attacker with physical access can bypass Secure Boot

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30203

#VU65214 Security features bypass in Windows Server and Windows - CVE-2022-30203

Description

Remediation

External links

Please verify you're human