CVE-2018-8549

Name of the Vulnerable Software and Affected Versions Windows Server 2012 R2 Windows RT 8.1 Windows Server 2012 Windows Server 2019 Windows Server 2016 Windows 8.1 Windows 10 Windows 10 Servers

Description A security feature bypass exists due to incorrect validation of kernel driver signatures by Windows. This issue is related to errors in the kernel driver authentication mechanism, which can allow an attacker to load incorrectly signed drivers into the kernel.

Recommendations For Windows Server 2012 R2, update the operating system to a version that includes the security patch for this issue. For Windows RT 8.1, apply the recommended configuration changes to mitigate the risk of exploitation. For Windows Server 2012, consider disabling the loading of kernel drivers until a patch is available. For Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, and Windows 10 Servers, apply the necessary security updates to resolve the issue. As a temporary workaround, consider restricting access to the kernel driver loading mechanism to minimize the risk of exploitation.