Windows Security Feature Bypass Vulnerability - CVE-2019-0632
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity (UMCI) policy on the machine. To exploit the vulnerability an attacker would first have to access the local machine and then run a malicious program. The update addresses the vulnerability by correcting how Windows validates User Mode Code Integrity policies.
- Microsoft Windows Server 2016
- Microsoft Windows 10
- Microsoft Windows Server 2019