CVE-2026-8863
HIGHOracle Corporation OracleLinux(7.2) Shim - Arbitrary Code Execution
Title source: ruleDescription
Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker with administrative privileges or the ability to modify the boot process could use one of the vulnerable shim bootloaders to bypass Secure Boot protections and execute arbitrary code before the operating system loads. Specific UEFI DBX update is required to block these vulnerable boot loaders.
References (3)
Core 3
Core References
Third Party Advisory third-party-advisory
CERT/CC Vulnerability Notice
https://kb.cert.org/vuls/id/616257
Third Party Advisory, US Government Resource
https://www.kb.cert.org/vuls/id/616257
Vendor Advisory vendor-advisory
Microsoft Vendor Security Advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8863
Scores
CVSS v3
7.8
EPSS
0.0010
EPSS Percentile
0.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
Status
published
Products (14)
Baramundi Software/Baramundi Management Suite
< 2024R1
Blancco UK/WhiteCanyon WipeDrive
8.0.0 - 8.1.3
Finland Matriculation Board/Abitti 1
1.0.0
NTC IT ROSA LLC/RosaLinux
R10
NTC IT ROSA LLC/RosaLinux
R9
Oracle Corporation/OracleLinux(7.2) shim
0.9
PC-Doctor/Factory for Linux (Bootable Diagnostics)
6.9 - 6.20.7710.267
PC-Doctor/Network Factory for Linux (Bootable Diagnostics)
6.9 - 6.20.7711.267
PC-Doctor/Service Center
14 - 17.0.7535.900
PC-Doctor/Service Center Drive Erase
15 - 17.0.7538.592
... and 4 more
Published
Jun 09, 2026
Tracked Since
Jun 10, 2026