Skip to main content

CWE-1329

Reliance on Component That is Not Updateable

2 CVEs Avg CVSS 6.6 MITRE
0
CRITICAL
0
HIGH
2
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2026-41097 MEDIUM PATCH This Month

Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

Authentication Bypass Microsoft
NVD VulDB
CVSS 3.1
6.7
EPSS
0.2%
CVE-2026-21265 MEDIUM PATCH This Month

Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. [CVSS 6.4 MEDIUM]

Windows Microsoft Windows 10 1607 Windows 10 1809 Windows 10 21h2 +10
NVD
CVSS 3.1
6.4
EPSS
0.3%
CVE-2026-41097
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

Authentication Bypass Microsoft
NVD VulDB
CVE-2026-21265
EPSS 0% CVSS 6.4
MEDIUM PATCH This Month

Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. [CVSS 6.4 MEDIUM]

Windows Microsoft Windows 10 1607 +12
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy