Lucene search
K

63 matches found

Prion
Prion
added 2020/12/09 9:15 a.m.17 views

Design/Logic Flaw

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise VSE prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of...

4.6CVSS6.7AI score0.00407EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/09 8:40 a.m.75 views

CVE-2020-7337

CVE-2020-7337 affects McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16, where an incorrect permission assignment for a critical resource enables local administrators to bypass local security protections by manipulating Code Integrity checks tied to Windows Defender Application Control. The...

6.7CVSS6.6AI score0.00407EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/09 8:40 a.m.23 views

CVE-2020-7337 Incorrect Permission Assignment for Critical Resource

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise VSE prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of...

6.5CVSS6.7AI score0.00407EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/09/22 12:0 a.m.6 views

The vulnerability of the application control tool. Windows Defender Application Control (WDAC), a PowerShell Core automation tool, allows a hacker to execute arbitrary code.

The vulnerability of the application control tool, Windows Defender Application Control WDAC, a PowerShell Core automation tool, is related to errors during command validation. Exploiting this vulnerability allows an attacker to execute arbitrary code...

6.8CVSS7.2AI score0.07037EPSS
Exploits0References3
OSV
OSV
added 2020/09/11 5:15 p.m.19 views

CVE-2020-0951

A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC. To exploit the...

6.7CVSS7.6AI score0.07037EPSS
Exploits0References1
NVD
NVD
added 2020/09/11 5:15 p.m.26 views

CVE-2020-0951

A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC. To exploit the...

7.2CVSS0.07037EPSS
Exploits0References1
Prion
Prion
added 2020/09/11 5:15 p.m.43 views

Security feature bypass

A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC. To exploit the...

7.2CVSS7.9AI score0.07037EPSS
Exploits0References1Affected Software3
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.45 views

Windows Defender Application Control Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC. To exploit the...

7.2CVSS5.6AI score0.07037EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/11/12 8:0 a.m.1401 views

November 12, 2019—KB4525236 (OS Build 14393.3326)

November 12, 2019—KB4525236 OS Build 14393.3326 Reminder The additional servicing for Windows 10 Enterprise, Education, and IoT Enterprise editions ended on April 9, 2019 and doesn't extend beyond this date. To continue receiving security and quality updates, Microsoft recommends updating to the...

9.9CVSS7.6AI score0.75859EPSS
Exploits32
OSV
OSV
added 2019/07/19 3:15 p.m.37 views

CVE-2019-1167

A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'...

4.1CVSS4.4AI score0.011EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/07/19 2:34 p.m.49 views

CVE-2019-1167

A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'...

4.2AI score0.011EPSS
Exploits0References1
Microsoft Secure
Microsoft Secure
added 2019/07/01 4:25 p.m.54 views

Delivering major enhancements in Windows Defender Application Control with the Windows 10 May 2019 Update

With the Windows 10 May 2019 Update we delivered several important features for Windows Defender Application Control WDAC, which was originally introduced to Windows as part of a scenario called Device Guard. WDAC works in conjunction with features like Windows Defender Application Guard, which...

7.5AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/05/23 3:50 p.m.69 views

New browser extensions for integrating Microsoft’s hardware-based isolation

The hardware-based isolation technology on Windows 10 that allows Microsoft Edge to isolate browser-based attacks is now available as a browser extension for Google Chrome and Mozilla Firefox. We introduced the container technology in 2017. Since then, we have been evolving the technology and...

0.2AI score
Exploits0
OpenVAS
OpenVAS
added 2019/05/15 12:0 a.m.85 views

Microsoft Windows Multiple Vulnerabilities (KB4499167)

This host is missing a critical security update according to Microsoft KB4499167 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.9CVSS7.6AI score0.26264EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2019/05/15 12:0 a.m.76 views

Microsoft Windows Multiple Vulnerabilities (KB4494441)

This host is missing a critical security update according to Microsoft KB4494441. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

9.9CVSS7.6AI score0.26264EPSS
Exploits3References3
Kaspersky
Kaspersky
added 2019/05/14 12:0 a.m.71 views

KLA11485 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A deni...

9CVSS8.8AI score0.08464EPSS
Exploits0References41
Microsoft KB
Microsoft KB
added 2019/04/12 12:0 a.m.4 views

January 15, 2019—KB4480976 (OS Build 17134.556)

January 15, 2019—KB4480976 OS Build 17134.556 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue in Microsoft Edge that fails to trigger the focusin event if the focus even...

6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2018/02/13 8:0 a.m.55 views

February 13, 2018—KB4074591 (OS Build 10586.1417)

February 13, 2018—KB4074591 OS Build 10586.1417 This update can only be applied to Windows 10 Enterprise and Windows 10 Education editions.Reminder:The additional servicing offer for Windows 10, version 1511 ends on April 10, 2018 and doesn't extend beyond this date. To continue receiving securit...

9.3CVSS7.2AI score0.65858EPSS
Exploits33
MSRC
MSRC
added 2018/02/04 8:0 a.m.7 views

Windows Defender Application Control の紹介

本記事は、Windows Security のブログ “Introducing Windows Defender Application Control” 2017 年 10 月 23 日 米国時間...

2.6AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2017/10/23 1:4 p.m.40 views

Making Microsoft Edge the most secure browser with Windows Defender Application Guard

Innovation in the attack space is constant as adversaries increase in both determination and sophistication. In response to increased investments in defense, attackers are adapting and improving tactics at breakneck speed. The good news is that defenders are also innovating and disrupting long...

7.5AI score
Exploits0
Rows per page
Query Builder