CVE-2023-24880 - Microsoft Windows SmartScreen Security Feature Bypass Vulnerability

Vulnerability Name

Microsoft Windows SmartScreen Security Feature Bypass Vulnerability

Description

Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-24880

https://nvd.nist.gov/vuln/detail/CVE-2023-24880