CNNVD-202509-1078 Information
CNNVD ID
CNNVD-202509-1078
Related CVE
- CNNVD Published: 2025-09-08
Description (Chinese)
Microsoft Windows Defender Application Control(WDAC)是美国微软(Microsoft)公司的一款安全工具,通过配置策略从软件层面限制程序运行,以减少黑客可以攻击的范围。 Microsoft Windows Defender Application Control存在安全漏洞,该漏洞源于策略实现不当,可能导致驱动程序阻止列表失效。
Description (English)
Microsoft Windows Defense Application Control (WDAC) is a United States Microsoft Corporation security tool that limits program operations at the software level through configuration strategies to reduce the reach of hackers. There is a security loophole in Microsoft Windows Defense Application Control, which results from inappropriate strategy implementation, which may lead to a driver preventing the list from being invalidated.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
微软
Published
2025-09-08
Last Modified
2026-02-24
References
https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/design/microsoft-recommended-driver-block-rules https://x.com/JonnyJohnson_/status/1895103112924307727 https://learn.microsoft.com/en-us/windows/security/hardware-security/enable-virtualization-based-protection-of-code-integrity https://access.redhat.com/security/cve/cve-2025-59033
Patch
https://learn.microsoft.com/en-us/hololens/windows-defender-application-control-wdac
Share on: