CVE-2026-8863

Name of the Vulnerable Software and Affected Versions Spyrus WTGCreator version 4.2 Baramundi Management Suite versions prior to 2024R1 WhiteCanyon WipeDrive versions 8.0.0 through 8.1.3 Finland Matriculation Exam Abitti 1 version 1.0.0 NTC IT Rosa versions R9 and R10 PC-Doctor Service Center versions 15 and 16

Description Multiple Microsoft-signed UEFI SHIM bootloaders are subject to a Secure Boot bypass due to a lack of enforcement and validation of the Secure Boot Advanced Targeting (SBAT), a mechanism used to revoke vulnerable bootloaders. An attacker with administrative privileges or the ability to modify the boot process can utilize these bootloaders to circumvent Secure Boot protections and execute arbitrary code before the operating system loads.

Recommendations Apply the specific UEFI DBX update to block the vulnerable bootloaders for all affected versions.