New Search

Windows Security Feature Bypass Vulnerability - CVE-2019-0627

oval:org.cisecurity:def:5994

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity (UMCI) policy on the machine. To exploit the vulnerability an attacker would first have to access the local machine and then run a malicious program. The update addresses the vulnerability by correcting how Windows validates User Mode Code Integrity policies.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2019
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
Class:
vulnerability
Reference(s):
  • CVE-2019-0627
  • MSRC-CVE-2019-0627
  • KB4487018
  • KB4487026
  • KB4487020
  • KB4486996
  • KB4487017
  • KB4487044
Product(s):