← back
CVE-2017-11899

CVE-2017-11899

EPSS 5.8%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 5.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
12 Dec 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Device Guard in Windows 10 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way untrusted files are handled, aka "Microsoft Windows Security Feature Bypass Vulnerability".
Affected products
Microsoft Corporation · Device Guard

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11899http://www.securityfocus.com/bid/102077http://www.securitytracker.com/id/1039992