hypeorhack
← back

CVE-2023-24932

MEDIUM · 6.7 EPSS 10.6%
hype MIXED · 38 hack

Real vulnerability with credible APT link, but 3-year-old CVE; chatter conflates old/new reporting.

What: Secure Boot bypass vulnerability (CVE-2023-24932, "BlackLotus") affecting Windows UEFI firmware; CVSS 6.7 MEDIUM.

Why it matters: Social chatter links this to SprySOCKS backdoor (Earth Lusca) allegedly used against government targets in Taiwan, Thailand, Pakistan, Honduras. ESET researcher coverage suggests active use in targeted intrusions. However, CVE is not KEV-listed and published nearly 3 years ago; current June 2026 posts appear to recycle earlier reporting mixed with new SprySOCKS campaign details. The vulnerability itself is real but weaponization timing unclear.

Where it's seen: Spanish-language infosec posts on Bluesky; references to ESET findings, The Hacker News article, and defensive guidance (PowerShell mitigation tips). No fresh PoC or scanning signals reported.

RISK: MODERATE — Known vuln, possible targeted use, but no mass exploitation signal or urgent vendor action noted.

Generated by claude-haiku-4-5 from public posts and authoritative metadata. AI can make mistakes — verify against vendor advisories before acting. 6/16/2026, 8:39:31 PM

Description

Secure Boot Security Feature Bypass Vulnerability

CVSS 3.1 breakdown

Exploitability 0.8 · Impact 5.9
vector CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack vector
Local
Complexity
Low
Privileges required
High
User interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected versions

  • microsoft/windows_10_1507
    • < 10.0.10240.19926
  • microsoft/windows_10_1607
    • < 10.0.14393.5921
  • microsoft/windows_10_1809
    • < 10.0.17763.4377
  • microsoft/windows_10_20h2
    • < 10.0.19042.2965
  • microsoft/windows_10_21h2
    • < 10.0.19044.2965
  • microsoft/windows_10_22h2
    • < 10.0.19045.2965
  • microsoft/windows_11_21h2
    • < 10.0.22000.1936
  • microsoft/windows_11_22h2
    • < 10.0.22000.1702
  • microsoft/windows_server_2008
    • r2
  • microsoft/windows_server_2012
    • r2

Weaknesses

Vendors

  • microsoft

Products

  • windows_10_1507
  • windows_10_1607
  • windows_10_1809
  • windows_10_20h2
  • windows_10_21h2
  • windows_10_22h2
  • windows_11_21h2
  • windows_11_22h2
  • windows_server_2008
  • windows_server_2012
  • windows_server_2016
  • windows_server_2019
  • +1 more