CVE Catalog

CVE-2026-45654

HighCVSS 7.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.31%

23th percentile - higher than 23% of all known CVEs

Summary

A vulnerability in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. The issue stems from improper access control in the Secure Boot mechanism.

Risk Assessment

An attacker with local access can bypass Secure Boot protections, potentially leading to the execution of unauthorized software or compromise of system integrity.

Recommendation

It is recommended to immediately apply the security update provided by Microsoft as part of the monthly cumulative update package.

Original NVD description (English source)

Improper access control in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS