FortiClient Vulnerability

Microsoft Secure Boot CVE-2016-3287 Security Feature Bypass Vulnerability

Description

A security feature bypass vulnerability exists when Windows Secure Boot improperly applies an affected policy. An attacker who successfully exploited this vulnerability could disable code integrity checks, allowing test-signed executables and drivers to be loaded on a target device. In addition, an attacker could bypass the Secure Boot Integrity Validation for BitLocker and the Device Encryption security features. To exploit the vulnerability, an attacker must either gain administrative privileges or physical access to a target device to install an affected policy. The security update addresses the vulnerability by blacklisting affected policies.

Affected Applications

Windows 10
Windows RT 8.1
Windows Server 2012
Windows 8

CVE References

CVE-2016-3287

Other References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3287

ID	51597
Created	Sep 25, 2018
Description Updated	Dec 21, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Microsoft
Patch	auto
Application	Windows 10 , Windows RT 8.1 , Windows Server 2012 , Windows 8

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Microsoft Secure Boot CVE-2016-3287 Security Feature Bypass Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Microsoft Secure Boot CVE-2016-3287 Security Feature Bypass Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center