CVEs classified under CWE-1329, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2022-34381 — CVSS 9.1 (critical): Dell BSAFE SSL-J version 7.0 and all versions prior to 6.5, and Dell BSAFE Crypto-J versions prior to 6.2.6.1 contain an unmaintained…
CVE-2026-48576 — CVSS 7.9 (high): Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
CVE-2026-48573 — CVSS 7.9 (high): Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
CVE-2026-41097 — CVSS 6.7 (medium): Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
CVE-2021-38398 — CVSS 6.5 (medium): The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical…
CVE-2026-21265 — CVSS 6.4 (medium): Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and…