Warning: Windows 10 S is affected by a medium severity security issue

Costea Lestoc By: Costea Lestoc
2 minute read

Home » News » Warning: Windows 10 S is affected by a medium severity security issue

Google found and helped addressed a few bugs during the past couple of months especially in Microsoft Edge and Windows 10. Now, the tech giant unveiled a “medium” security issue in systems that have the user mode code integrity (UMCI) enabled. Windows 10 S was the OS that was used as an example because it has the policy enabled by default.

Windows 10 S is a secure OS despite the new finding

Windows 10 S is a highly secured operating system, but it has its own share of restrictions including the fact that you can’t run Win32 apps in it. Google Project Zero team found a flaw lurking in the OS that allows arbitrary code extension on a system which has UMCI enabled. In Windows 10 S, Device Guard is enabled by default.

The vulnerability only affects the systems that have device Guard enabled, and the flaw cannot be exploited from other systems remotely. To be able to do this, an attacker would have to have the code already running on the system in order to modify registry entries. This would significantly lower the issue’s severity. According to Google, the flaw would not be this severe if other bypass methods were fixed. For instance, the Remote Code Execution (RCE) in Edge is still not fixed. This is the reason for which the flaw was classified as “medium.”

Google revealed the flaw just before Microsoft’s April’s Patch Tuesday

The timing of Google’s finding and the announcement regarding the weakness was a bit strange, considering that Microsoft couldn’t have fixed it before the patch’s release. This is what led to the Redmond giant to request a 14-day extension.

On the other hand, Microsoft informed Google that it would roll out a fix next month in the May Patch Tuesday. Google refused Microsoft’s request, and it did not give the company the 14 days that it asked for, at the same time making the flaw public.

RELATED STORIES TO CHECK OUT:

Join our community
windows report logo

Join our community of over 2 million active users and get the latest and most important Windows content on your email address.

Discussions

Next up

How to fix “This installation package could not be opened” error on Windows 10?

Milan Stanojevic avatar. By: Milan Stanojevic
10 minute read

We all have various third-party applications on our PCs, but sometimes issues while installing applications can occur. According to users, they are receiving the This […]

Continue Reading

Fix: Windows 10 not showing disk drive

Elsie Otachi By: Elsie Otachi
7 minute read

Whenever you encounter an issue such as Windows 10 not showing disk drive, or you cannot find or see it under File Explorer, there are […]

Continue Reading

How to fix mouse lags in Windows 10 (and make it fast again)

Ivan Jenic By: Ivan Jenic
8 minute read

Mouse lag is a major hindrance that will affect your user experience and it appears that some Windows 10 users are having this issue, so […]

Continue Reading