Microsoft Windows CVE-2019-0627 Security Feature Bypass Vulnerability

description-logoDescription

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity (UMCI) policy on the machine. To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program. The update addresses the vulnerability by correcting how Windows validates User Mode Code Integrity policies.

affected-products-logoAffected Applications

Windows 10
Windows Server 2016
Windows Server version 1803 (Server Core Installation)
Windows Server version 1709 (Server Core Installation)
Windows Server 2019

CVE References

CVE-2019-0627