A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka "Device Guard Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8449 | Patch Vendor Advisory |
http://www.securitytracker.com/id/1041642 | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/105272 | Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/45435/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
Information
Published : 2018-09-12 17:29
Updated : 2019-10-02 17:03
NVD link : CVE-2018-8449
Mitre link : CVE-2018-8449
JSON object : View
CWE
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
Products Affected
microsoft
- windows_server_2016
- windows_10