CVE-2017-11899

Device Guard in Windows 10 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way untrusted files are handled, aka "Microsoft Windows Security Feature Bypass Vulnerability".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
VendorProductVersion
microsoftwindows_10
-
microsoftwindows_server_2016
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/102077
http://www.securitytracker.com/id/1039992
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11899
http://www.securityfocus.com/bid/102077
http://www.securitytracker.com/id/1039992
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11899