Microsoft Device Guard Code Integrity Policy CVE-2017-11823 Security Feature Bypass Vulnerability

description-logoDescription

A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session. An attacker who successfully exploited this vulnerability could inject code into a trusted PowerShell process to bypass the Device Guard Code Integrity policy on the local machine.

affected-products-logoAffected Applications

Windows 10
Windows Server 2016

CVE References

CVE-2017-11823