CVE-2019-1167

A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'.

Published: Jul 19, 2019
Updated: May 9, 2024
CVE: CVE-2019-1167
GHSA: GHSA-5frh-8cmj-gc59
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.1
AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / powershell_core	6.1	6.1.x
microsoft / powershell_core	6.2	6.2.x
System.Management.Automation	6.2.0	6.2.2
System.Management.Automation	6.1.0	6.1.5

https://github.com/PowerShell/PowerShell/security/advisories/GHSA-5frh-8cmj-gc59
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1167

Vulnerability Database

289,599

CVE-2019-1167