PT-2019-2779 · Microsoft · Windows Defender Application Control

Published

2019-07-16

Updated

2020-08-24

CVE-2019-1167

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Windows Defender Application Control (WDAC) (affected versions not specified)

Description A security feature bypass issue exists in Windows Defender Application Control (WDAC), potentially allowing an attacker to bypass WDAC enforcement. The vulnerability is related to errors in security settings and could enable an attacker to bypass the PowerShell Core Constrained Language Mode, impacting the integrity, confidentiality, and availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-254

Related Identifiers

BDU:2019-02727

CVE-2019-1167

GHSA-5FRH-8CMJ-GC59

Affected Products

Windows Defender Application Control

PT-2019-2779 · Microsoft · Windows Defender Application Control

CVE-2019-1167

Weakness Enumeration

Related Identifiers

Affected Products

References · 7