### [CVE-2019-0732](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0732)
![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Windows&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201607%20for%2032-bit%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201607%20for%20x64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201703%20for%2032-bit%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201703%20for%20x64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201709%20for%2032-bit%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201709%20for%20ARM64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201709%20for%20x64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201803%20for%2032-bit%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201803%20for%20ARM64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201803%20for%20x64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201809%20for%2032-bit%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201809%20for%20ARM64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20Version%201809%20for%20x64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20for%2032-bit%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=10%20for%20x64-based%20Systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20R2%20for%20Itanium-Based%20Systems%20Service%20Pack%201%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20R2%20for%20x64-based%20Systems%20Service%20Pack%201%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20R2%20for%20x64-based%20Systems%20Service%20Pack%201%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20for%2032-bit%20Systems%20Service%20Pack%202%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20for%2032-bit%20Systems%20Service%20Pack%202%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20for%20Itanium-Based%20Systems%20Service%20Pack%202%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20for%20x64-based%20Systems%20Service%20Pack%202%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2008%20for%20x64-based%20Systems%20Service%20Pack%202%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2012%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2012%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2012%20R2%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2012%20R2%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2016%20%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2016%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2019%20%20(Core%20installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2019%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7%20for%2032-bit%20Systems%20Service%20Pack%201%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7%20for%20x64-based%20Systems%20Service%20Pack%201%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=8.1%20for%2032-bit%20systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=8.1%20for%20x64-based%20systems%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=RT%208.1%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=version%201709%20%20(Core%20Installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=version%201803%20%20(Core%20Installation)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Security%20Feature%20Bypass&color=brightgreen)

### Description

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Security Feature Bypass Vulnerability'.

### POC

#### Reference
- http://packetstormsecurity.com/files/152536/Microsoft-Windows-LUAFV-NtSetCachedSigningLevel-Device-Guard-Bypass.html
- https://www.exploit-db.com/exploits/46716/

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/punishell/WindowsLegacyCVE