CVEブラウザに戻る

CVE-2017-11899

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.1400%

EPSS Percentile24.34th

Published2017年12月12日

Last Modified2026年5月13日

Vulnerability Description

Device Guard in Windows 10 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way untrusted files are handled, aka "Microsoft Windows Security Feature Bypass Vulnerability".

Affected Platforms (CPE)

💻

Microsoft

Windows 10

All versions

💻

Microsoft

Windows 10

= 1511

💻

Microsoft

Windows 10

= 1607

💻

Microsoft

Windows 10

= 1703

💻

Microsoft

Windows 10

= 1709

💻

Microsoft

Windows Server 2016

All versions

💻

Microsoft

Windows Server 2016

= 1709

References & Advisories

🔗 http://www.securityfocus.com/bid/102077

🔗 http://www.securitytracker.com/id/1039992

🔗 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11899

🔗 http://www.securityfocus.com/bid/102077

🔗 http://www.securitytracker.com/id/1039992

🔗 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11899

関連する脆弱性情報

CVE-2019-568410.0

NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in DirectX drivers, in which a specially crafted shader ...

CVE-2020-079610.0

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles cer...

CVE-2019-623510.0

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12...

CVE-2020-1238810.0

The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this iss...