Vulnerability Details CVE-2016-3320
Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow attackers to bypass the Secure Boot protection mechanism by leveraging (1) administrative or (2) physical access to install a crafted boot manager, aka "Secure Boot Security Feature Bypass."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.13
EPSS Ranking 93.7%
CVSS Severity
CVSS v3 Score 4.9
CVSS v2 Score 4.0
References
- http://www.securityfocus.com/bid/92304
- http://www.securitytracker.com/id/1036573
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-100
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MVB6Y2TVKSOBTIIBRUAJUIH3LQHMHCAG/
- http://www.securityfocus.com/bid/92304
- http://www.securitytracker.com/id/1036573
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-100
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MVB6Y2TVKSOBTIIBRUAJUIH3LQHMHCAG/
Products affected by CVE-2016-3320
-
cpe:2.3:o:fedoraproject:fedora:25
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1511
-
cpe:2.3:o:microsoft:windows_8.1:-
-
cpe:2.3:o:microsoft:windows_rt_8.1:-
-
cpe:2.3:o:microsoft:windows_server_2012:-
-
cpe:2.3:o:microsoft:windows_server_2012:r2