CVE-2026-8863

HIGH

Oracle Corporation OracleLinux(7.2) Shim - Arbitrary Code Execution

Title source: rule
STIX 2.1

Description

Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the operating system loads. Specific UEFI DBX update is required to block these vulnerable boot loaders.

References (3)

Core 3
Core References
Third Party Advisory third-party-advisory
CERT/CC Vulnerability Notice
https://kb.cert.org/vuls/id/616257
Third Party Advisory, US Government Resource
https://www.kb.cert.org/vuls/id/616257
Vendor Advisory vendor-advisory
Microsoft Vendor Security Advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8863

Scores

CVSS v3 7.8
EPSS 0.0010
EPSS Percentile 0.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

Status published
Products (14)
Baramundi Software/Baramundi Management Suite < 2024R1
Blancco UK/WhiteCanyon WipeDrive 8.0.0 - 8.1.3
Finland Matriculation Board/Abitti 1 1.0.0
NTC IT ROSA LLC/RosaLinux R10
NTC IT ROSA LLC/RosaLinux R9
Oracle Corporation/OracleLinux(7.2) shim 0.9
PC-Doctor/Factory for Linux (Bootable Diagnostics) 6.9 - 6.20.7710.267
PC-Doctor/Network Factory for Linux (Bootable Diagnostics) 6.9 - 6.20.7711.267
PC-Doctor/Service Center 14 - 17.0.7535.900
PC-Doctor/Service Center Drive Erase 15 - 17.0.7538.592
... and 4 more
Published Jun 09, 2026
Tracked Since Jun 10, 2026