Core Isolation Not Displaying Microsoft Vulnerable Driver Blocklist

Question

Core Isolation Not Displaying Microsoft Vulnerable Driver Blocklist

Anonymous

Dear Microsoft Support Team,

I am experiencing an issue with the Core Isolation feature on my Windows device. Specifically, the Microsoft Vulnerable Driver Blocklist is not displaying correctly under Core Isolation settings.

Problem Description:

Issue: When I navigate to Windows Security > Device Security > Core Isolation on my Windows 10/11 machine, the Microsoft Vulnerable Driver Blocklist is either missing or not showing up as expected. This feature should list known vulnerable drivers, but it appears that it's not being displayed or updated on my system.
Expected Behavior: The Microsoft Vulnerable Driver Blocklist should be visible under the Core Isolation settings and should provide information on drivers that are identified as vulnerable.

Steps Taken:

I have checked the Windows Security settings multiple times, but the list remains empty,inaccessible.
I have tried adding it in with registry but it does not work.

System Information:

Operating System: Windows 11 pro, version 10.0.22621 build 22621
Core Isolation Status: Enabled

I would appreciate your assistance in resolving this issue. Could you please guide me through any additional steps I can take to fix this, or if there is a known issue with the Core Isolation feature and driver blocklist display?

Thank you for your time and support. I look forward to your response.

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

3 answers

Answer 1

Anonymous

So did i, and have the same issue the Microsoft Vulnerable Driver Blocklist that doesn't appear in the Core Isolation menu or anywhere else.

0 comments

Answer 2

Hello wan208,

Welcome to the Microsoft Community.

The issue you're experiencing with the Microsoft Vulnerable Driver Blocklist not displaying correctly in the Core Isolation settings on your Windows 10/11 device can stem from a few potential causes. Let’s go over the steps to troubleshoot and resolve the issue:

Verify the Core Isolation and Virtualization-Based Security (VBS) Settings

First, ensure that both Core Isolation and Virtualization-Based Security (VBS) are properly configured and enabled.

Open Windows Security > Device Security > Core Isolation, and ensure Memory Integrity is turned ON.

Additionally, you need to ensure that VBS is enabled via Group Policy or Registry, as it is required for the Vulnerable Driver Blocklist feature to work.

To check and enable VBS:

Open Group Policy Editor (gpedit.msc).

Navigate to: Computer Configuration > Administrative Templates > System > Device Guard.

Check the setting for Turn on Virtualization Based Security. It should be set to Enabled.

Restart your system.

Alternatively, you can enable VBS using the Registry:

Open the Registry Editor (regedit).

Navigate to: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.

Ensure that the key EnableVirtualizationBasedSecurity is set to 1.

Restart your computer.

According to Microsoft official documentation, Microsoft recommended driver block rules | Microsoft Learn, the option to turn Microsoft's vulnerable driver blocklist on or off using Windows Security settings is grayed out when HVCI, Smart App Control, or S mode is enabled. You must disable HVCI or Smart App Control, or switch the device out of S mode, and restart the device before you can turn off the Microsoft vulnerable driver blocklist.

Best Regards,

William.Y | Microsoft Community Support Specialist

Hello,
Thank you for responding.

I have made sure that my core isolation and VBS is enabled as you said. Though Microsoft Vulnerable Driver Blocklist is still not available for me:

I would greatly appreciate it if you could get back to me as soon as possible!
Best Regards,
Quan

Answer 3

Hello wan208,

Welcome to the Microsoft Community.

The issue you're experiencing with the Microsoft Vulnerable Driver Blocklist not displaying correctly in the Core Isolation settings on your Windows 10/11 device can stem from a few potential causes. Let’s go over the steps to troubleshoot and resolve the issue:

Verify the Core Isolation and Virtualization-Based Security (VBS) Settings

First, ensure that both Core Isolation and Virtualization-Based Security (VBS) are properly configured and enabled.
Open Windows Security > Device Security > Core Isolation, and ensure Memory Integrity is turned ON.
Additionally, you need to ensure that VBS is enabled via Group Policy or Registry, as it is required for the Vulnerable Driver Blocklist feature to work.

To check and enable VBS:

Open Group Policy Editor (gpedit.msc).
Navigate to: Computer Configuration > Administrative Templates > System > Device Guard.
Check the setting for Turn on Virtualization Based Security. It should be set to Enabled.
Restart your system.

Alternatively, you can enable VBS using the Registry:

Open the Registry Editor (regedit).
Navigate to: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.
Ensure that the key EnableVirtualizationBasedSecurity is set to 1.
Restart your computer.

According to Microsoft official documentation, Microsoft recommended driver block rules | Microsoft Learn, the option to turn Microsoft's vulnerable driver blocklist on or off using Windows Security settings is grayed out when HVCI, Smart App Control, or S mode is enabled. You must disable HVCI or Smart App Control, or switch the device out of S mode, and restart the device before you can turn off the Microsoft vulnerable driver blocklist.

Best Regards,

William.Y | Microsoft Community Support Specialist

Share via

Core Isolation Not Displaying Microsoft Vulnerable Driver Blocklist

3 answers