vulnerability

Microsoft Windows: CVE-2017-8625: Internet Explorer Security Feature Bypass Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Aug 8, 2017	Aug 8, 2017	Sep 5, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Aug 8, 2017

Added

Aug 8, 2017

Modified

Sep 5, 2025

Description

Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to bypass Device Guard User Mode Code Integrity (UMCI) policies due to Internet Explorer failing to validate UMCI policies, aka "Internet Explorer Security Feature Bypass Vulnerability".

Solutions

microsoft-windows-windows_10-1507-kb4034668microsoft-windows-windows_10-1511-kb4034660microsoft-windows-windows_10-1607-kb4034658microsoft-windows-windows_server_2016-1607-kb4034658

References

BID-100063
CVE-2017-8625
https://attackerkb.com/topics/CVE-2017-8625
CWE-276
URL-https://support.microsoft.com/help/4034658
URL-https://support.microsoft.com/help/4034660
URL-https://support.microsoft.com/help/4034668

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today