vulnerability
Microsoft Windows: CVE-2018-8492: Device Guard Code Integrity Policy Security Feature Bypass Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Oct 9, 2018 | Oct 9, 2018 | Sep 5, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Oct 9, 2018
Added
Oct 9, 2018
Modified
Sep 5, 2025
Description
A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Policy Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers.
Solutions
microsoft-windows-windows_10-1607-kb4462917microsoft-windows-windows_10-1703-kb4462937microsoft-windows-windows_10-1709-kb4462918microsoft-windows-windows_10-1803-kb4462919microsoft-windows-windows_10-1809-kb4464330microsoft-windows-windows_server_2016-1607-kb4462917microsoft-windows-windows_server_2019-1809-kb4464330
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.