CVE-2026-8863
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the operating system loads. Specific UEFI DBX update is required to block these vulnerable boot loaders.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Oracle Corporation | OracleLinux(7.2) shim | 0.9 | affected |
| PC-Doctor | Service Center Enterprise | 14 <= 17.0.7536.900 | affected |
| PC-Doctor | Service Center Drive Erase | 15 <= 17.0.7538.592 | affected |
| PC-Doctor | Service Center Japan | 15 <= 17.0.7539.904 | affected |
| PC-Doctor | Service Center | 14 <= 17.0.7535.900 | affected |
| PC-Doctor | Network Factory for Linux (Bootable Diagnostics) | 6.9 <= 6.20.7711.267 | affected |
| PC-Doctor | Factory for Linux (Bootable Diagnostics) | 6.9 <= 6.20.7710.267 | affected |
| Spyrus | WTGCreator | 4.2 | affected |
| Blancco UK | WhiteCanyon WipeDrive | 8.0.0 <= 8.1.3 | affected |
| baramundi software | baramundi Management Suite | * <= 2024R1 | affected |
| SUSE Linux | OpenSUSE shim | 0.9 | affected |
| Finland Matriculation Board | Abitti 1 | 1.0.0 | affected |
| NTC IT ROSA LLC | RosaLinux | R9 | affected |
| NTC IT ROSA LLC | RosaLinux | R10 | affected |
Weaknesses
- CWE-347: Improper Verification of Cryptographic Signature
- CWE-354: Improper Validation of Integrity Check Value
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8863
- https://kb.cert.org/vuls/id/616257
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.