Hi @Wrestlingbeast,

Welcome to the HP Support Community.

Thank you for posting your query. I will be glad to help you.

The error “Secure Boot Violation – Invalid signature detected” usually means Secure Boot is rejecting the current boot files or certificates, often after an update. The supported recovery paths in this situation are:
 

1. Temporarily disable Secure Boot so the PC can start
   
   
   1. Turn the PC on and immediately press the BIOS/UEFI key repeatedly (commonly F1, F2, F12, or Esc) until the firmware/BIOS menu opens.
       
   2. In the BIOS/UEFI menus, locate Secure Boot (typically under Security, Boot, or Authentication).
       
   3. Set Secure Boot to Disabled.
       
   4. Save changes and exit; the PC should restart.
       
2. If the device still will not start after updates/cert changes When Secure Boot changes or revocations (for example, those associated with CVE‑2023‑24932 or new certificates) go wrong, use this recovery procedure:
   
   
   1. Turn off Secure Boot in UEFI as above.
       
   2. Reset Secure Boot keys to factory defaults in the UEFI menus (look for an option like “Reset to factory keys” or similar; avoid “Clear” and choose “Reset” if both exist).
       
   3. Try to boot Windows from the system disk.
      
      
      • If Windows starts, sign in.
         
      • Open an elevated Command Prompt and run these commands one by one to rebuild the EFI boot files:
        
        Windows Command Prompt 
        
        mountvol s: /s
         
        del s:\*.*/f /s /q        
        
        bcdboot %systemroot% /s S:
        
        
      • After “Boot files successfully created.”, restart the device.
         
   4. If Windows still cannot start, use existing recovery media to reinstall Windows, then verify it boots.
       
   5. Re‑enable Secure Boot in UEFI once Windows is booting normally (see next section).
       
3. Re‑enable Secure Boot after recovery. Once Windows is working again:
   
   
   1. Uninstall any hardware/OS that is not compatible with Secure Boot if present.
       
   2. Open the BIOS/UEFI menu (F1/F2/F12/Esc or via Shift + Restart → Troubleshoot → Advanced options → UEFI Firmware Settings).
       
   3. Set Secure Boot to Enabled. On some PCs, choose Custom and load the built‑in Secure Boot keys, or reset BIOS to factory defaults if enabling is blocked.
       
   4. Save and exit; let the PC reboot.
       
   5. If the PC fails to boot after enabling Secure Boot, disable it again and boot.

I hope this will help.

 

Take care and have a good day.