Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Microsoft vulnerable driver block list is implemented as Windows Defender Application Control (WDAC) policy. Entries that specify only the to-be-signed (TBS) part of the code signer certificate are properly blocked, but entries that specify the signing certificate's TBS hash along with a 'FileAttribRef' qualifier (such as file name or version) may not be blocked, whether hypervisor-protected code integrity (HVCI) is enabled or not. NOTE: The vendor disputes this CVE ID assignment and states that the driver blocklist is intended for use with HVCI.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
未保护的候选通道
Vulnerability Title
Microsoft Windows Defender Application Control 安全漏洞
Vulnerability Description
Microsoft Windows Defender Application Control(WDAC)是美国微软(Microsoft)公司的一款安全工具,通过配置策略从软件层面限制程序运行,以减少黑客可以攻击的范围。 Microsoft Windows Defender Application Control存在安全漏洞,该漏洞源于策略实现不当,可能导致驱动程序阻止列表失效。
CVSS Information
N/A
Vulnerability Type
N/A