Windows Firewall Control contains a high-severity vulnerability that could allow an attacker to bypass or modify critical security policies on the host system.

This vulnerability affects the Windows Firewall Control utility, potentially allowing an attacker to interact with the software to weaken or disable firewall rules. Such flaws typically involve insecure handling of process communications or improper authorization checks for administrative tasks.

A CVSS score of 7.8 indicates a high risk to host security. If an attacker successfully exploits this flaw, they could disable firewall protections, effectively leaving the system vulnerable to further exploitation, lateral movement, and unauthorized network access.

Immediate Action: Update Windows Firewall Control to the latest version provided by Malwarebytes to ensure all security patches are applied.

Proactive Monitoring: Monitor system logs for unauthorized configuration changes to the Windows Firewall or unexpected termination of security services.

Compensating Controls: Ensure that Endpoint Detection and Response (EDR) tools are configured to alert on unauthorized modifications to firewall settings or local security policies.

Public Exploit Available: false

Because this vulnerability directly impacts the integrity of the host's firewall protection, it must be addressed immediately. Administrators should prioritize updating the software across all managed endpoints to prevent attackers from bypassing network security controls.