Vulnerability Details : CVE-2017-0007
Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."
Vulnerability category: Input validation
Products affected by CVE-2017-0007
- cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-0007
0.91%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 74 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-0007
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
2.1
|
LOW | AV:L/AC:L/Au:N/C:N/I:P/A:N |
3.9
|
2.9
|
NIST | |
|
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2017-0007
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-0007
-
http://www.securitytracker.com/id/1038001
Microsoft Windows Multiple Flaws Let Remote Users Obtain Potentially Sensitive Information, Deny Service, and Execute Arbitrary Code and Let Local Users Gain Elevated Privileges - SecurityTracker
-
https://enigma0x3.net/2017/04/03/defeating-device-guard-a-look-into-cve-2017-0007/
Defeating Device Guard: A look into CVE-2017-0007 | enigma0x3
-
http://www.securityfocus.com/bid/96018
Microsoft Windows Device Guard CVE-2017-0007 Security Bypass Vulnerability
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0007
CVE-2017-0007 | Device Guard Security Feature Bypass VulnerabilityPatch;Vendor Advisory
Jump to