{"id":6176,"date":"2024-04-25T07:02:16","date_gmt":"2024-04-24T22:02:16","guid":{"rendered":"https:\/\/m365jp.net\/?p=6176"},"modified":"2024-04-25T07:03:38","modified_gmt":"2024-04-24T22:03:38","slug":"mc785007-revoking-vulnerable-windows-boot-managers","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2024-04-25-mc785007-revoking-vulnerable-windows-boot-managers","title":{"rendered":"MC785007 | Revoking vulnerable Windows Boot Managers"},"content":{"rendered":"<div class=\"postie-post\">\n<div>\n<hr>\n<table id=\"section\">\n<tbody>\n<tr>\n<th width=\"95%\">MC785007 | Revoking vulnerable Windows Boot Managers<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n<hr>\n<table id=\"data\">\n<tbody>\n<tr>\n<th>Classification<\/th>\n<td>stayInformed<\/td>\n<\/tr>\n<tr>\n<th>Last Updated<\/th>\n<td>04\/24\/2024 21:11:25<\/td>\n<\/tr>\n<tr>\n<th>Start Time<\/th>\n<td>04\/24\/2024 21:11:24<\/td>\n<\/tr>\n<tr>\n<th>End Time<\/th>\n<td>04\/24\/2025 21:11:24<\/td>\n<\/tr>\n<tr>\n<th>Message Content<\/th>\n<td>\n<div>Windows is making updates to address a known security vulnerability exploited by BlackLotus to bypass Windows Secure Boot. Windows updates release April 9, 2024, and later, include new controls which provide the manual ability to deploy the \u201cWindows UEFI   CA 2023\u201d certificate to the Secure Boot DB, as well as revoke trust for the \u201cMicrosoft Windows Production PCA 2011\u201d signing certificate.&nbsp;&nbsp;&nbsp;<\/div>\n<div>&nbsp;<\/div>\n<div>Enabling and testing these controls ahead of time will prepare your environment for the enforcement of security requirements which will become mandatory in the future. Get the details in our latest article,  <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/windows-it-pro-blog\/revoking-vulnerable-windows-boot-managers\/ba-p\/4121735\" rel=\"noopener noreferrer\" target=\"_blank\">  Revoking vulnerable Windows Boot Managers<\/a>.&nbsp;<\/div>\n<div>&nbsp;<\/div>\n<div><b>When will this happen:<\/b>&nbsp;<\/div>\n<div>You can opt in to revoke trust of the Microsoft Windows Production PCA 2011 as of the April 9, 2024 security update. You will need to follow steps listed in the article, including the installation of Windows updates released April 2024, or later.&nbsp;<\/div>\n<div>&nbsp;<\/div>\n<div><b>What you need to do to prepare:<\/b>&nbsp;<\/div>\n<div>Prepare for these changes now by installing Windows updates released April 9, 2024, or later. Before enabling security hardening changes, understand the changing boot manager requirements, and verify devices can be safely updated.&nbsp;<\/div>\n<div>&nbsp;<\/div>\n<div>Additionally, you can update the Secure Boot Forbidden Signature Database (DBX) on your system. To prepare your device to receive the Secure Boot DBX update package, please ensure that you have accurately applied the DB update package first. Read additional   information for more details.&nbsp;<\/div>\n<div>&nbsp;<\/div>\n<div><b>Additional information:<\/b>&nbsp;<\/div>\n<ul>\n<li><a href=\"https:\/\/techcommunity.microsoft.com\/t5\/windows-it-pro-blog\/revoking-vulnerable-windows-boot-managers\/ba-p\/4121735\" rel=\"noopener noreferrer\" target=\"_blank\">Revoking vulnerable Windows Boot Managers<\/a>&nbsp;<\/li>\n<li><a href=\"https:\/\/techcommunity.microsoft.com\/t5\/windows-it-pro-blog\/updating-microsoft-secure-boot-keys\/ba-p\/4055324\" rel=\"noopener noreferrer\" target=\"_blank\">Updating Microsoft Secure Boot keys<\/a>&nbsp;<\/li>\n<li><a href=\"https:\/\/support.microsoft.com\/topic\/kb5025885-how-to-manage-the-windows-boot-manager-revocations-for-secure-boot-changes-associated-with-cve-2023-24932-41a975df-beb2-40c1-99a3-b3ff139f832d\" rel=\"noopener noreferrer\" target=\"_blank\">KB5025885: How   to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932<\/a>&nbsp;<\/li>\n<li><a href=\"https:\/\/prod.support.services.microsoft.com\/topic\/kb5036210-deploying-windows-uefi-ca-2023-certificate-to-secure-boot-allowed-signature-database-db-a68a3eae-292b-4224-9490-299e303b450b\" rel=\"noopener noreferrer\" target=\"_blank\">Deploying Windows   UEFI CA 2023 certificate to Secure Boot Allowed Signature Database (DB)<\/a>&nbsp;<\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-0689\" rel=\"noopener noreferrer\" target=\"_blank\">Security Update Guide &#8211; Microsoft &#8211; Microsoft Secure Boot Security Feature Bypass Vulnerability<\/a>&nbsp;<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>MC785007 | Revoking vulnerable Windows Boot Managers Classification stayInformed Last Updated 04\/24\/2024 21:11 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-6176","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/6176","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=6176"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/6176\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=6176"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=6176"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=6176"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}