Shulou(Shulou.com)11/24 Report--

CTOnews.com, May 13, Microsoft attaches great importance to the recent exposure and tracking of a high-risk vulnerability numbered CVE-2023-24932. After releasing KB5025885 updates to fix this vulnerability, Microsoft released another KB5027455 guide today to further fix this vulnerability.

The official profile of Microsoft is attached to CTOnews.com as follows:

Microsoft has noticed a vulnerability in Windows Boot Manager that allows attackers to bypass secure startup.

Microsoft has released a security update that has fixed a problem in Boot Manager.

However, there is still a vulnerability after the patch is installed, whereby an attacker with administrative privileges or physical access to the device can roll back the boot manager to a version that does not have a security patch.

BlackLotus malware is using this rollback vulnerability to bypass the secure startup described in CVE-2023-24932. To solve this problem, Microsoft will revoke the vulnerable boot manager.

For specific operations, you can visit Microsoft's official support blog. CTOnews.com attaches a link here, and users can further fix the above vulnerabilities according to the operation of the blog.

Related readings:

"ESET discovers BlackLotus malware: the first UEFI bootkit to bypass Secure Boot on Win11"

"Microsoft fixes BlackLotus UEFI vulnerability on Win10 / Win11 to bypass secure startup"

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.