New Search

Windows Security Feature Bypass Vulnerability - CVE-2018-8549

oval:org.cisecurity:def:5997

A security feature bypass exists when Windows incorrectly validates kernel driver signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed drivers into the kernel. In an attack scenario an attacker could bypass security features intended to prevent improperly signed drivers from being loaded by the kernel. The update addresses the vulnerability by correcting how Windows validates kernel driver signatures.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 10
  • Microsoft Windows Server 2016
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2019
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012
Class:
vulnerability
Reference(s):
  • CVE-2018-8549
  • MSRC-CVE-2018-8549
  • KB4467678
  • KB4467703
  • KB4467680
  • KB4467691
  • KB4467696
  • KB4467686
  • KB4467702
  • KB4467708
Product(s):