CVE-2025-59033 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Microsoft vulnerable driver block list is implemented as Windows Defender Application Control (WDAC) policy. Entries that specify only the to-be-signed (TBS…
High CVSS: 7.4

CVE-2025-59033

The Microsoft vulnerable driver block list is implemented as Windows Defender Application Control (WDAC) policy. Entries that specify only the to-be-signed (TBS) part of the code signer certificate are properly blocked, but entries that specify the signing certificate's TBS hash along with a 'FileAttribRef' qualifier (such as file name or version) may not be blocked, whether hypervisor-protected code integrity (HVCI) is enabled or not. NOTE: The vendor disputes this CVE ID assignment and states that the driver blocklist is intended for use with HVCI.
Vendor
-
Product
-
CWE
CWE-420
Yayın Tarihi
2025-09-08 15:15:37
Güncelleme
2025-11-17 16:15:48
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-420 HIGH 2025

Referanslar

https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/design/microsoft-recommended-driver-block-rules https://learn.microsoft.com/en-us/windows/security/hardware-security/enable-virtualization-based-protection-of-code-integrity https://x.com/JonnyJohnson_/status/1895103112924307727