Lucene search
K

5 matches found

OSV
OSV
added 2017/12/12 9:29 p.m.3 views

CVE-2017-11899

Device Guard in Windows 10 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way untrusted files are handled, aka "Microsoft Windows Security Feature Bypass Vulnerability"...

9.8CVSS5.8AI score0.05836EPSS
Exploits0References3
CVE
CVE
added 2017/12/12 9:0 p.m.84 views

CVE-2017-11899

CVE-2017-11899 affects Device Guard in Windows 10 (1511, 1607, 1703, 1709) and Windows Server variants; vulnerability is a security feature bypass caused by how untrusted files are handled. The CNVD entry (CNVD-2018-00778) confirms a Device Guard security bypass due to untrusted file validation. ...

9.8CVSS9.2AI score0.05836EPSS
Exploits0References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2017/12/12 12:0 a.m.76 views

KB4053581: Windows 10 December 2017 Security Update

The remote Windows host is missing security update 4053581. It is, therefore, affected by multiple vulnerabilities : - A security feature bypass exists when Device Guard incorrectly validates an untrusted file. An attacker who successfully exploited this vulnerability could make an unsigned file...

9.8CVSS7.9AI score0.64164EPSS
Exploits25References21
Kaspersky
Kaspersky
added 2017/12/12 12:0 a.m.125 views

KLA11156 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious user can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions and execute arbitrary code. Below is a complete list of vulnerabilities: 1. An incorrect validating of untrusted fi...

9.8CVSS8.5AI score0.45521EPSS
Exploits6References28
Tenable Nessus
Tenable Nessus
added 2017/12/12 12:0 a.m.250 views

KB4053579: Windows 10 Version 1607 and Windows Server 2016 December 2017 Security Update

The remote Windows host is missing security update 4053579. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge. The vulnerability could corrupt memory in such a wa...

9.8CVSS7.9AI score0.68491EPSS
Exploits38References26
Rows per page
Query Builder