Impact of Secure Boot Security Feature Bypass Vulnerability CVE-2023-24932 on System Recovery

Problem

Vulnerability CVE-2023-24932 has been reported against Microsoft Windows.

Error Message

N/A

Cause

A vulnerability was found in Microsoft Windows and classified as Important.

To exploit the vulnerability, an attacker who has physical access or administrative rights to a target device could install an affected boot policy. An attacker who successfully exploited this vulnerability could bypass Secure Boot.
 

Secure Boot Security Feature Bypass Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932

KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932
https://support.microsoft.com/en-us/topic/kb5025885-how-to-manage-the-windows-boot-manager-revocations-for-secure-boot-changes-associated-with-cve-2023-24932-41a975df-beb2-40c1-99a3-b3ff139f832d

Solution

Create a new System Recovery Disk (SRD) boot media (.ISO) after applying the latest Windows Updates.

The new SRD ISO should be safe from vulnerability.

Creating a new Veritas System Recovery Disk
https://www.veritas.com/support/en_US/doc/38007533-156917127-0/v96136195-156917127

If a new SRD ISO cannot be created for any reason, it may be needed to disable the secure boot option and recover the box. Then, after successful recovery, enable the secure boot option.