logo

CVE-2023-24880 - Microsoft Windows SmartScreen Security Feature Bypass Vulnerability

CVE-2023-24880

Microsoft | Windows

  • Date Added:
  • 2023-03-14
  • Due Date:
  • 2023-04-04
Vulnerability Name

Microsoft Windows SmartScreen Security Feature Bypass Vulnerability

Description

Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-24880; https://nvd.nist.gov/vuln/detail/CVE-2023-24880

Free security scan for your website