Security researchers uncovered a flaw in Windows 11 that allows attackers to disable Secure Boot using Microsoft-signed tools, requiring manual updates to protect against bootkits.

As reported by BleepingComputer, a new Secure Boot bypass (tracked as CVE-2025-3052) was recently discovered that can be used to disable Windows 11’s built-in security measures to install ...

Although support for Windows 10 will not end in October 2025 after all, Microsoft’s additional grace period extends its life ...

A new exploit gives attackers a way to drop malware into your system's EFI partition and bypass Secure Boot entirely.

In this case, however, the flaw lets an attacker bypass Secure Boot by signing a vulnerable UEFI application with Microsoft's third-party certificates, essentially giving it carte blanche to run.

All UEFI systems with Microsoft third-party UEFI signing enabled are affected (Windows 11 Secured-core PCs should have this option disabled by default).

Ready to leave Windows 10 behind? We break down the easiest ways to download, install, and upgrade to Windows 11 for free.

The vulnerability has a CVSS score of 6.7 and is present in a UEFI application signed by Microsoft's 'Microsoft Corporation UEFI CA 2011' third-party certificate.

For users planning to upgrade to Windows 11 or run the latest software and games, EaseUS Partition Master ensures a smooth and worry-free upgrade process.