Summary
Office apps might be affected. Issue occurs when antimalware security solutions enable certain features.
Status: Mitigated External
After installing Windows 11, version 24H2, first and third-party apps might stop responding when antimalware security solutions enable certain features. Office applications such as Word and Excel might be affected.
Affected devices have CrowdStrike’s Falcon sensor software and the Enhanced Exploitation Visibility Prevention Policy setting enabled in the Prevention Policy applied to the host.
Most organizations affected by this issue reported it was observed after in-place upgrades and clean installs of version 24H2. We are investigating if this issue can occur with previous versions of Windows and other third-party security software.
This issue affects only organizations and managed IT environments. If you are a consumer using Home or Pro editions of Windows in personal devices not managed by an IT department, you are unlikely to face this issue.
Workaround
This issue is mitigated. CrowdStrike temporarily disabled the Enhanced Exploitation Visibility Prevention Policy setting on hosts running Windows 11, version 24H2. To learn more, please see CrowdStrike’s Tech Alert .
Next steps
Microsoft and CrowdStrike are collaborating on a resolution. Microsoft will update this documentation when more information or a Windows resolution is available.
