CVE-2016-3287

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 8.1, 10 Gold, and 10 1511 Windows Server versions 2012 Gold and 2012 R2 Windows RT version 8.1

Description The issue is related to errors in security settings, allowing a local attacker with administrative access to bypass the Secure Boot protection mechanism by installing a crafted policy. This enables the attacker to affect the system.

Recommendations For Windows 8.1, consider restricting administrative access to prevent exploitation until a fix is available. For Windows 10 Gold and 1511, restrict access to policy installation features to minimize the risk. For Windows Server 2012 Gold and 2012 R2, limit the use of administrative privileges to reduce the vulnerability to bypass Secure Boot. For Windows RT 8.1, avoid using administrative access for installing policies until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.