by vicarius
log in join community
by @leo.granda
22 Mar 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Bypassing Defender SmartScreen & Outlook Protected View Protocol

by @leo.granda
by @leo.granda
22 Mar 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Bypassing Defender SmartScreen & Outlook Protected View Protocol

CVEs

CVE-2024-21412
8.1 High Severity
CVE-2024-21413
9.8 Critical Severity

OS

WS2
Windows Server 2022 23H2Microsoft
10.0.25398.1965.*
10.0.25398.1913.*
10.0.25398.1916.*
10.0.25398.1849.*
10.0.25398.1840.*
10.0.25398.1791.*
10.0.25398.1791.*
10.0.25398.1791.*
10.0.25398.1369.*
10.0.25398.1425.*
Windows Server 2022
Windows Server 2022Microsoft
10.0.20348.4405.*
10.0.20348.4405.*
10.0.20348.4405.*
10.0.20348.4346.*
10.0.20348.4346.*
10.0.20348.4346.*
10.0.20348.4297.*
10.0.20348.3207.*
10.0.20348.3207.*
10.0.20348.3207.*
Windows Server 2019
Windows Server 2019Microsoft
10.0.17763.8027.*
10.0.17763.7922.*
10.0.17763.7919.*
10.0.17763.7792.*
10.0.17763.7783.*
10.0.17763.7678.*
10.0.17763.7558.*
10.0.17763.7136.*
10.0.17763.7434.*
10.0.17763.7314.*
W12
Windows 11 23H2Microsoft
10.0.22631.6199.*
10.0.22631.6199.*
10.0.22631.6060.*
10.0.22631.6060.*
10.0.22631.5909.*
10.0.22631.5909.*
10.0.22631.5900.*
10.0.22631.5900.*
10.0.22631.5768.*
10.0.22631.5768.*
W12
Windows 11 21H2Microsoft
10.0.22000.2777.*
10.0.22000.2777.*
10.0.22000.3260.*
10.0.22000.3260.*
10.0.22000.2710.*
10.0.22000.2899.*
10.0.22000.2899.*
22000.2899.*
22000.2899.*
22000.3019.*
W12
Windows 11 22H2Microsoft
10.0.22621.6060.*
10.0.22621.6060.*
10.0.22621.5909.*
10.0.22621.5909.*
10.0.22621.5900.*
10.0.22621.5900.*
10.0.22621.5768.*
10.0.22621.5768.*
10.0.22621.5624.*
10.0.22621.5624.*
W12
Windows 10 22H2Microsoft
10.0.19045.6575.*
10.0.19045.6575.*
10.0.19045.6575.*
10.0.19045.6456.*
10.0.19045.6456.*
10.0.19045.6456.*
10.0.19045.6332.*
10.0.19045.6332.*
10.0.19045.6332.*
10.0.19045.6321.*
W12
Windows 10 21H2Microsoft
10.0.19044.6575.*
10.0.19044.6575.*
10.0.19044.6575.*
10.0.19044.6456.*
10.0.19044.6456.*
10.0.19044.6456.*
10.0.19044.6218.*
10.0.19044.6218.*
10.0.19044.6218.*
10.0.19044.6332.*
W11
Windows 10 1809Microsoft
10.0.17763.8027.*
10.0.17763.8027.*
10.0.17763.7919.*
10.0.17763.7919.*
10.0.17763.7792.*
10.0.17763.7792.*
10.0.17763.7783.*
10.0.17763.7783.*
10.0.17763.7678.*
10.0.17763.7678.*

Apps

OLT
Office Long Term Servicing ChannelMicrosoft
2024.*
2021.*
365 Apps
365 AppsMicrosoft
16.0.19127.20314.*
2401.17231.20236.*
116.0.17231.20194.*
16.0.17425.20070.*
16.0.17328.20184.*
16.0.17328.20162.*
16.0.17328.20068.*
16.0.17231.20236.*
16.0.17231.20194.*
16.0.17126.20132.*
Office
OfficeMicrosoft
16.0.19530.20038.*
16.0.19611.20002.*
16.0.19609.20004.*
16.0.19608.20000.*
16.0.19231.20274.*
16.0.17932.20620.*
16.0.19607.20002.*
16.0.14334.20440.*
16.0.10417.20080.*
16.0.18526.20672.*

Screenshots from the blog posts

images/clu2nciod2xh21jk47m8mc74l.pngimages/clu2nciod2xh21jk47m8mc74l.png

Summary

CVE-2024-21412 and CVE-2024-21413 represent significant cybersecurity threats. The exploitation of these vulnerabilities underscores the importance of proactive measures to safeguard against emerging threats. By adopting a multilayered security approach, staying vigilant, and implementing best practices, organizations can mitigate the risks posed by these and future vulnerabilities.

Description

Tags

#trendingCVE#trending#CVE-2024-21413#CVE-2024-21412#Outlook
users/photos/cl16zs42l01qe0knx382g7y3m.jpg

@leo.granda

18 posts

Total vcoins

0

Badges

badges/images/cl1xi65zx02el0jms239bekpv.png

Malware Researcher

badges/images/cl1xi6pcn02et0jms48zfg0ns.png

Early-bird

badges/images/clktw3w8b0psc1inaam75d4oc.png

Vulnerability Researcher

Social media links

Comments (1)