<p>A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.</p>
<p>To exploit this vulnerability, an attacker could run a specially crafted application to bypass Unified Extensible Firmware Interface (UEFI) variable security in Windows.</p>
<p>The security update addresses the vulnerability by correcting security feature behavior to enforce permissions.</p>
CPE | Name | Operator | Version |
---|---|---|---|
windows_10 | eq | 1607 | |
windows_10 | eq | 1709 | |
windows_10 | eq | 1803 | |
windows_10 | eq | 1809 | |
windows_10 | eq | 1903 | |
windows_10 | eq | 1909 | |
windows_10 | eq | 2004 | |
windows_server_2016 | eq | 1903 | |
windows_server_2016 | eq | 1909 | |
windows_server_2016 | eq | 2004 |