CVE-2017-0007

MEDIUM

Microsoft Windows 10 - Improper Input Validation

Title source: rule

Description

Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."

References (4)

[Various Sources] https://enigma0x3.net/2017/04/03/defeating-device-guard-a-look-into-cve-2017-0007/

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0007

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/96018

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1038001

Scores

CVSS v3 5.5

EPSS 0.0121

EPSS Percentile 78.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Classification

CWE

CWE-20

Status published

Affected Products (5)

microsoft/windows_10

microsoft/windows_server_2016

Microsoft Corporation/Device Guard < Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016

Timeline

Published Mar 17, 2017

Tracked Since Feb 18, 2026