Applies ToWindows 11 version 24H2, all editions

Summary

Office apps might be affected. Issue occurs when antimalware security solutions enable certain features.  

Status: Mitigated External

After installing Windows 11, version 24H2, first and third-party apps might stop responding when antimalware security solutions enable certain features. Office applications such as Word and Excel might be affected.

Affected devices have CrowdStrike’s Falcon sensor software and the Enhanced Exploitation Visibility Prevention Policy setting enabled in the Prevention Policy applied to the host.

Most organizations affected by this issue reported it was observed after in-place upgrades and clean installs of version 24H2. We are investigating if this issue can occur with previous versions of Windows and other third-party security software.

This issue affects only organizations and managed IT environments. If you are a consumer using Home or Pro editions of Windows in personal devices not managed by an IT department, you are unlikely to face this issue.

Workaround

This issue is mitigated. CrowdStrike temporarily disabled the Enhanced Exploitation Visibility Prevention Policy setting on hosts running Windows 11, version 24H2. To learn more, please see CrowdStrike’s Tech Alert .

Next steps

Microsoft and CrowdStrike are collaborating on a resolution. Microsoft will update this documentation when more information or a Windows resolution is available.

Need more help?

Want more options?

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Communities help you ask and answer questions, give feedback, and hear from experts with rich knowledge.