Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to make an unsigned file appear to be signed, due to a security feature bypass, aka "Device Guard Security Feature Bypass Vulnerability".
http://www.securityfocus.com/bid/101714
http://www.securitytracker.com/id/1039790
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11830
Source: MITRE
Published: 2017-11-15
Updated: 2019-10-03
Type: CWE-367
Base Score: 4.6
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 3.9
Severity: MEDIUM
Base Score: 5.3
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Impact Score: 3.4
Exploitability Score: 1.8
Severity: MEDIUM