Описание
Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.
FAQ
What type of information could be disclosed by this vulnerability?
An attacker who successfully exploited this vulnerability could view Virtual Trust Level 1 (VTL1) data from Virtual Trust 0 (VTL0) which is the least privileged level.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Windows 11 Version 23H2 for ARM64-based Systems | ||
| Windows 11 Version 23H2 for x64-based Systems | ||
| Windows 11 Version 24H2 for ARM64-based Systems | ||
| Windows 11 Version 24H2 for x64-based Systems | ||
| Windows 11 Version 25H2 for ARM64-based Systems | ||
| Windows 11 Version 25H2 for x64-based Systems |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.
Уязвимость функции безопасности на основе виртуализации Virtualization-Based Security (VBS) операционных систем Windows, позволяющая нарушителю получить доступ к конфиденциальной информации
EPSS
5.5 Medium
CVSS3