CVE-2017-11830
Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to make an unsigned file appear to be signed, due to a security feature bypass, aka "Device Guard Security Feature Bypass Vulnerability".
Published
2017-11-15T03:29:00.420
Last Modified
2025-04-20T01:37:25.860
Status
Deferred
Source
[email protected]
Severity
CVSSv3.0: 5.3 (MEDIUM)
CVSSv2 Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
- Access Vector: LOCAL
- Access Complexity: LOW
- Authentication: NONE
- Confidentiality Impact: PARTIAL
- Integrity Impact: PARTIAL
- Availability Impact: PARTIAL
Exploitability Score
3.9
Impact Score
6.4
Weaknesses
Affected Vendors & Products
References
-
http://www.securityfocus.com/bid/101714
Third Party Advisory, VDB Entry
([email protected])
-
http://www.securitytracker.com/id/1039790
Third Party Advisory, VDB Entry
([email protected])
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11830
Patch, Vendor Advisory
([email protected])
-
https://www.exploit-db.com/exploits/43162/
Exploit, Technical Description, Third Party Advisory, VDB Entry
([email protected])
-
http://www.securityfocus.com/bid/101714
Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)
-
http://www.securitytracker.com/id/1039790
Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11830
Patch, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://www.exploit-db.com/exploits/43162/
Exploit, Technical Description, Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)