Critical Writable File in Lenovo’s Windows Directory Lets Attackers Bypass AppLocker
Posted: Sun Jul 06, 2025 3:34 pm
A recently highlighted security flaw on Lenovo machines has drawn attention to a lingering risk for organizations relying on Microsoft’s AppLocker to enforce application whitelisting.
The issue centers on a writable file, MFGSTAT.zip, found in the Windows folder of Lenovo devices, which can be exploited to bypass AppLocker’s default restrictions and execute unauthorized code.
https://cyberpress.org/critical-writabl ... applocker/
The issue centers on a writable file, MFGSTAT.zip, found in the Windows folder of Lenovo devices, which can be exploited to bypass AppLocker’s default restrictions and execute unauthorized code.
https://cyberpress.org/critical-writabl ... applocker/