Main Vulnerability Database Vulnerabilities #VU8327

#VU8327 Security restrictions bypass in Windows and Windows Server - CVE-2017-8746

Published: September 12, 2017 / Updated: September 12, 2017

Vulnerability identifier: #VU8327

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2017-8746

CWE-ID: CWE-264

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Windows
Windows Server

Software vendor:
Microsoft

Description

The vulnerability allows a local attacker to bypass security restrictions on the target system.

The vulnerability exists due to an error in Device Guard. A local attacker can inject code into a trusted PowerShell process that is trusted by the Code Integrity policy and bypass the Device Guard Code Integrity policy on the local machine.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8746