Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability - CVE-2024-21431ID: oval:org.secpod.oval:def:98436 | Date: (C)2024-03-13 (M)2024-04-17 |
Class: VULNERABILITY | Family: windows |
Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability. A hypervisor-protected code integrity (HVCI) security feature bypass vulnerability could exist when Windows incorrectly allows certain kernel-mode pages to be marked as Read, Write, Execute (RWX) even with HVCI enabled. To exploit this vulnerability an attacker could run a specially crafted script at administrator level that exploits a signed driver to bypass code integrity protections in Windows.
Platform: |
Microsoft Windows 10 |
Microsoft Windows 11 |
Microsoft Windows Server 2022 |
Microsoft Windows Server |