Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-0732Incorrect Authorization in Microsoft Windows

CWE-863Incorrect Authorization4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.9%
top 24.25%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
22
Microsoft WindowsMicrosoft Windows ServerMicrosoft Windows 10+19 more
Timeline
PublishedApr 9
Latest updateMay 13

Description

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Security Feature Bypass Vulnerability'.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages20 packages

CVEListV5microsoft/windows20 versions+19
NVDmicrosoft/windowsr2, 1709, 1803+2

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

1
GHSA
GHSA-2hxc-g3vg-5jpj: A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls t2022-05-13

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows 10 1809 - LUAFV NtSetCachedSigningLevel Device Guard Bypass2019-04-16

📋Vendor Advisories

1
Microsoft
Windows Security Feature Bypass Vulnerability2019-04-09
CVE-2019-0732 — Incorrect Authorization in Microsoft | cvebase