Search

MC552655 – Take action: Additional guidance and manual steps required for devices using Secure Boot to address CVE-2023-24932

cloudscout.one Icon

check before: 2023-05-23

Product:

Office 365 general

Platform:

World tenant, Windows Desktop

Status:

Change type:

Admin impact

Links:

Details:

Security updates released May 9, 2023 and later contain security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 that can bypass the Secure Boot security feature using the BlackLotus UEFI bootkit. These hardening changes are available, but not enabled by default in these updates.

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:

Created:
2023-05-10

updated:
2023-07-15

the free basic plan is required to see all details. Sign up here

A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.

Login
Get a Plan

changes*

DatePropertyoldnew
2023-07-15MC MessagesSecurity updates released May 9, 2023 and later contain security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 that can bypass the Secure Boot security feature using the BlackLotus UEFI bootkit. These hardening changes are available, but not enabled by default in these updates.

When will this happen:
Updates released May 9, 2023 and later contain protections required to address CVE-2023-24932. The security hardening for CVE-2023-24932 will be done in phases, as steps must be taken to prevent issues on your device when the revocations are applied/enabled.		Security updates released May 9, 2023 and later contain security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 that can bypass the Secure Boot security feature using the BlackLotus UEFI bootkit. These hardening changes are available, but not enabled by default in these updates.
2023-07-15MC How Affecthat you need to do to prepare:
For information on how to enable the revocations and what is required before you should enable the revocations, see KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932.
2023-07-15MC prepareFor information on how to enable the revocations and what is required before you should enable the revocations, see KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932
https://support.microsoft.com/help/5025885		https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932
https://support.microsoft.com/help/5025885

*starting April 2022

Last updated 9 months ago

Related Posts:

  • cloudscout.one Icon
    MC708249 - Reminder: Changes to Windows Boot Manager…     19. January 2024 Administration check before: 2024-04-09 Product: Office 365 general, Windows Platform: Windows Desktop, World tenant Status: Change type: Admin impact Links: Details: Windows updates released July 11, 2023 and later include security measures which protect against a…
  • cloudscout.one Icon
    MC761220 - Take Action: New Windows 365 Required Endpoint     29. March 2024 Administration check before: 2024-04-28 Product: Windows 365 Platform: Windows Desktop, World tenant Status: Change type: Admin impact, Retirement Links: Details: Windows 365 has added a new required endpoint, hm-iot-in-4-prod-prna01.azure-devices.net (TCP ports 443 & 5671 outbound), to…
  • cloudscout.one Icon
    MC710391 - WMI command-line (WMIC) utility…     27. January 2024 Administration check before: 2024-02-09 Product: Windows Platform: Windows Desktop, World tenant Status: Change type: Admin impact Links: Details: If you’re still using Windows Management Instrumentation Command line (WMIC), you’ll start seeing changes this year. While it…
  • cloudscout.one Icon
    MC705257 - Take action: January 2024 security update…     10. January 2024 Administration check before: 2024-01-23 Product: Windows Platform: Windows Desktop, World tenant Status: Change type: Admin impact Links: Details: The January 2024 security update is now available for Windows 11 and all supported versions of Windows 10.…
  • cloudscout.one Icon
    MC715594 - Take action: February 2024 security…     14. February 2024 Administration check before: 2024-02-27 Product: Copilot, Windows Platform: Windows Desktop, World tenant Status: Change type: Admin impact Links: Details: The February 2024 security update is now available for Windows 11 and all supported versions of Windows…
  • SharePoint Logo
    MC733581 - Take action: March 2024 security update…     13. March 2024 Administration check before: 2024-03-26 Product: SharePoint, Windows Platform: Education, Windows Desktop, World tenant Status: Change type: Admin impact Links: Details: The March 2024 security update is now available for Windows 11 and all supported versions of…

Leave a Reply

Share to MS Teams

cloudscout.one

Consolidated Microsoft 365 Roadmap and Message Center analysis for Office 365 operations and change management.

Support

Schierding.one GmbH

Alleenstraße 16
78549 Spaichingen
Phone: +49 (0)7424 60899-09
E-Mail: info@schierding.one
Amtsgericht Stuttgart (HRB 767585)
USt-ID DE321821109

Legal:

Privacy Policy

Imprint

FAQ

Login to your account

Welcome Back, We Missed You!