CVE-2019-1167

A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
microsoftCNA
4.1 MEDIUM
LOCAL
HIGH
HIGH
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
Affected Products (NVD)
VendorProductVersion
microsoftpowershell_core
6.1
microsoftpowershell_core
6.2
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
microsoftpowershell
6.1
CNA
microsoftpowershell
6.2
CNA
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1167
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1167