CVE-2017-8746

Windows Device Guard in Windows 10 1607, 1703, and Windows Server 2016 allows A security feature bypass vulnerability due to how PowerShell exposes functions and processes user supplied code, aka "Device Guard Security Feature Bypass Vulnerability".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
VendorProductVersion
microsoftwindows_server_2016
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/100760
http://www.securitytracker.com/id/1039340
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8746
http://www.securityfocus.com/bid/100760
http://www.securitytracker.com/id/1039340
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8746