Researchers demonstrated how attackers can bypass its protections without physically tampering with the device. The exploit, known as “bitpixie” (CVE-2023-21563), was showcased at the Chaos Communication Congress (38C3) by security researcher Thomas Lambertz.

The “bitpixie” exploit bypasses Secure Boot by exploiting a downgrade attack on the Windows Boot Manager.