Critical severity9.8NVD Advisory· Published Dec 12, 2017· Updated Jun 17, 2026
CVE-2017-11899
CVE-2017-11899
Description
Device Guard in Windows 10 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way untrusted files are handled, aka "Microsoft Windows Security Feature Bypass Vulnerability".
Affected products
10cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2016:1709:*:*:*:*:*:*:*
- Range: 10 1511, 1607, 1703 and 1709, Server 2016 and Server 1709
- Microsoft Corporation/Device Guardv5Range: Windows 10 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11899nvdPatchVendor Advisory
- www.securityfocus.com/bid/102077nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039992nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.