Sign in with Microsoft
Sign in or create an account.
Hello,
Select a different account.
You have multiple accounts
Choose the account you want to sign in with.

Summary

Microsoft introduced the vulnerable driver blocklist as an optional feature in Windows 10, version 1809. The blocklist is enabled on systems that enable Hypervisor-protected Code Integrity (HVCI) or run Windows in S Mode. Starting with Windows 11, version 22H2, the blocklist is also enabled by default on all devices. You can turn it on and off using the Windows Security app.

Note The Windows Security app is updated separately from the OS and ships out of box. The version with the toggle is in the final validation ring and will ship to all customers very soon.

This October 2022 preview release addresses an issue that only updates the blocklist for full Windows OS releases. When you install this release, the blocklist on older OS versions will be the same as the blocklist on Windows 11, version 22H2 and later. For more information, go to Microsoft recommended driver block rules.

Compatibility

Blocking drivers can cause devices or software to malfunction. In rare cases, it leads to a stop error. There is no guarantee that the blocklist will block every driver that has weaknesses. To produce the blocklist, Microsoft attempts to balance the security risks from vulnerable drivers against the potential effect on compatibility and reliability.

Disable the blocklist on Windows 10 and Windows 11, version 21H2 systems

Disable the blocklist on Windows 11, version 22H2 systems

  1. Open the Windows Security App.

  2. From the Device Security panel, navigate to the core isolation page.

  3. Set the state of the Microsoft Vulnerable Driver Blocklist to off.

  4. Restart your device.

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!

×