by vicarius
log in join community
by @leo.granda
22 Mar 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Bypassing Defender SmartScreen & Outlook Protected View Protocol

by @leo.granda
by @leo.granda
22 Mar 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Bypassing Defender SmartScreen & Outlook Protected View Protocol

CVEs

CVE-2024-21412
8.1 High Severity
CVE-2024-21413
9.8 Critical Severity

OS

WS2
Windows Server 2022 23H2Microsoft
10.0.25398.2025.*
10.0.25398.2092.*
10.0.25398.1965.*
10.0.25398.1913.*
10.0.25398.1916.*
10.0.25398.1849.*
10.0.25398.1840.*
10.0.25398.1791.*
10.0.25398.1791.*
10.0.25398.1791.*
Windows Server 2022
Windows Server 2022Microsoft
10.0.20348.4467.*
10.0.20348.4467.*
10.0.20348.4467.*
10.0.20348.4529.*
10.0.20348.4529.*
10.0.20348.4529.*
10.0.20348.4648.*
10.0.20348.4648.*
10.0.20348.4648.*
10.0.20348.4648.*
Windows Server 2019
Windows Server 2019Microsoft
10.0.17763.8146.*
10.0.17763.8276.*
10.0.17763.8027.*
10.0.17763.7922.*
10.0.17763.7919.*
10.0.17763.7792.*
10.0.17763.7783.*
10.0.17763.7678.*
10.0.17763.7558.*
10.0.17763.7136.*
W12
Windows 11 23H2Microsoft
10.0.22631.6345.*
10.0.22631.6345.*
10.0.22631.6491.*
10.0.22631.6491.*
10.0.22631.6199.*
10.0.22631.6199.*
10.0.22631.6060.*
10.0.22631.6060.*
10.0.22631.5909.*
10.0.22631.5909.*
W12
Windows 11 21H2Microsoft
10.0.22000.3019.*
10.0.22000.3147.*
10.0.22000.2777.*
10.0.22000.2777.*
10.0.22000.3260.*
10.0.22000.3260.*
10.0.22000.2710.*
10.0.22000.2899.*
10.0.22000.2899.*
22000.2899.*
W12
Windows 11 22H2Microsoft
10.0.22621.6060.*
10.0.22621.6060.*
10.0.22621.5909.*
10.0.22621.5909.*
10.0.22621.5900.*
10.0.22621.5900.*
10.0.22621.5768.*
10.0.22621.5768.*
10.0.22621.5624.*
10.0.22621.5624.*
W12
Windows 10 22H2Microsoft
10.0.19045.6691.*
10.0.19045.6691.*
10.0.19045.6691.*
10.0.19045.4529.*
10.0.19045.6809.*
10.0.19045.6809.*
10.0.19045.6809.*
10.0.19045.6575.*
10.0.19045.6575.*
10.0.19045.6575.*
W12
Windows 10 21H2Microsoft
10.0.19044.6691.*
10.0.19044.6691.*
10.0.19044.6691.*
10.0.19044.6809.*
10.0.19044.6809.*
10.0.19044.6809.*
10.0.19044.4529.*
10.0.19044.6575.*
10.0.19044.6575.*
10.0.19044.6575.*
W11
Windows 10 1809Microsoft
10.0.17763.8146.*
10.0.17763.8146.*
10.0.17763.8276.*
10.0.17763.8276.*
10.0.17763.8027.*
10.0.17763.8027.*
10.0.17763.7919.*
10.0.17763.7919.*
10.0.17763.7792.*
10.0.17763.7792.*

Apps

OLT
Office Long Term Servicing ChannelMicrosoft
2024.*
2021.*
365 Apps
365 AppsMicrosoft
16.0.19127.20314.*
2401.17231.20236.*
116.0.17231.20194.*
16.0.17425.20070.*
16.0.17328.20184.*
16.0.17328.20162.*
16.0.17328.20068.*
16.0.17231.20236.*
16.0.17231.20194.*
16.0.17126.20132.*
Office
OfficeMicrosoft
16.0.19929.20000.*
16.0.19926.20000.*
16.0.19925.20000.*
16.0.19924.20000.*
16.0.19923.20000.*
16.0.19922.20000.*
16.0.19822.20114.*
16.0.19921.20000.*
16.0.19919.20000.*
16.0.19822.20104.*

Screenshots from the blog posts

images/clu2nciod2xh21jk47m8mc74l.pngimages/clu2nciod2xh21jk47m8mc74l.png

Summary

CVE-2024-21412 and CVE-2024-21413 represent significant cybersecurity threats. The exploitation of these vulnerabilities underscores the importance of proactive measures to safeguard against emerging threats. By adopting a multilayered security approach, staying vigilant, and implementing best practices, organizations can mitigate the risks posed by these and future vulnerabilities.

Description

Tags

#trendingCVE#trending#CVE-2024-21413#CVE-2024-21412#Outlook
users/photos/cl16zs42l01qe0knx382g7y3m.jpg

@leo.granda

18 posts

Total vcoins

0

Badges

badges/images/cl1xi65zx02el0jms239bekpv.png

Malware Researcher

badges/images/cl1xi6pcn02et0jms48zfg0ns.png

Early-bird

badges/images/clktw3w8b0psc1inaam75d4oc.png

Vulnerability Researcher

Social media links

Comments (1)