Summary
Microsoft introduced the vulnerable driver blocklist as an optional feature in Windows 10, version 1809. The blocklist is enabled on systems that enable Hypervisor-protected Code Integrity (HVCI) or run Windows in S Mode. Starting with Windows 11, version 22H2, the blocklist is also enabled by default on all devices. You can turn it on and off using the Windows Security app.
Note The Windows Security app is updated separately from the OS and ships out of box. The version with the toggle is in the final validation ring and will ship to all customers very soon.
This October 2022 preview release addresses an issue that only updates the blocklist for full Windows OS releases. When you install this release, the blocklist on older OS versions will be the same as the blocklist on Windows 11, version 22H2 and later. For more information, go to Microsoft recommended driver block rules.
Compatibility
Blocking drivers can cause devices or software to malfunction. In rare cases, it leads to a stop error. There is no guarantee that the blocklist will block every driver that has weaknesses. To produce the blocklist, Microsoft attempts to balance the security risks from vulnerable drivers against the potential effect on compatibility and reliability.
Disable the blocklist on Windows 10 and Windows 11, version 21H2 systems
-
Turn off memory integrity (HVCI), if applicable. See Device protection in Windows Security.
-
Disable Windows in S Mode, if applicable. See Switching out of S mode in Windows.
Disable the blocklist on Windows 11, version 22H2 systems
-
Open the Windows Security App.
-
From the Device Security panel, navigate to the core isolation page.
-
Set the state of the Microsoft Vulnerable Driver Blocklist to off.
-
Restart your device.