by vicarius
log in join community
by @jakaba
20 Dec 2023
#cve_analysis

Write a blog analysis for a CVE

publish

Windows SmartScreen Security Feature bypass (CVE-2023-24880)

by @jakaba
by @jakaba
20 Dec 2023
#cve_analysis

Write a blog analysis for a CVE

publish

Windows SmartScreen Security Feature bypass (CVE-2023-24880)

CVEs

CVE-2023-24880
4.4 Low Severity

OS

W12
Windows 11 21H2Microsoft
10.0.22000.3019.*
10.0.22000.3147.*
10.0.22000.2777.*
10.0.22000.2777.*
10.0.22000.3260.*
10.0.22000.3260.*
10.0.22000.2710.*
10.0.22000.2899.*
10.0.22000.2899.*
22000.2899.*
W12
Windows 11 22H2Microsoft
10.0.22621.6060.*
10.0.22621.6060.*
10.0.22621.5909.*
10.0.22621.5909.*
10.0.22621.5900.*
10.0.22621.5900.*
10.0.22621.5768.*
10.0.22621.5768.*
10.0.22621.5624.*
10.0.22621.5624.*
W12
Windows 10 22H2Microsoft
10.0.19045.6937.*
10.0.19045.6937.*
10.0.19045.6937.*
10.0.19045.7058.*
10.0.19045.7058.*
10.0.19045.7058.*
10.0.19045.7291.*
10.0.19045.7291.*
10.0.19045.7291.*
10.0.19045.7184.*
W12
Windows 10 21H2Microsoft
10.0.19044.7291.*
10.0.19044.7291.*
10.0.19044.7291.*
10.0.19044.7184.*
10.0.19044.7184.*
10.0.19044.7184.*
10.0.19044.7058.*
10.0.19044.7058.*
10.0.19044.7058.*
10.0.19044.6937.*
W11
Windows 10 1607Microsoft
10.0.14393.9140.*
10.0.14393.9140.*
10.0.14393.9060.*
10.0.14393.9060.*
10.0.14393.8957.*
10.0.14393.8957.*
10.0.14393.8868.*
10.0.14393.8868.*
10.0.14393.8688.*
10.0.14393.8688.*
W11
Windows 10 1809Microsoft
10.0.17763.8389.*
10.0.17763.8389.*
10.0.17763.8755.*
10.0.17763.8755.*
10.0.17763.8644.*
10.0.17763.8644.*
10.0.17763.8511.*
10.0.17763.8511.*
10.0.17763.8146.*
10.0.17763.8146.*
Windows Server 2022
Windows Server 2022Microsoft
10.0.20348.3695.*
10.0.20348.3695.*
10.0.20348.3695.*
10.0.20348.4893.*
10.0.20348.4893.*
10.0.20348.4893.*
10.0.20348.4773.*
10.0.20348.4773.*
10.0.20348.4773.*
10.0.20348.4776.*
Windows Server 2019
Windows Server 2019Microsoft
10.0.17763.3772.*
10.0.17763.5579.*
10.0.17763.8389.*
10.0.17763.8755.*
10.0.17763.7683.*
10.0.17763.7240.*
10.0.17763.8281.*
10.0.17763.8647.*
10.0.17763.7249.*
10.0.17763.7322.*
Windows Server 2016
Windows Server 2016Microsoft
10.0.14393.9140.*
10.0.14393.9062.*
10.0.14393.9060.*
10.0.14393.8957.*
10.0.14393.8868.*
10.0.14393.8688.*
10.0.14393.8783.*
10.0.14393.8594.*
10.0.14393.8524.*
10.0.14393.8519.*
W12
Windows 10 20H2Microsoft
10.0.19042.2788.*
10.0.19042.2788.*
10.0.19042.2788.*
10.0.19042.2673.*
10.0.19042.2673.*
10.0.19042.2673.*
10.0.19042.2546.*
10.0.19042.2546.*
10.0.19042.2546.*
10.0.19042.2364.*

Screenshots from the blog posts

images/clpwpvahp2p311hofh78tbn45.pngimages/clpwpvahp2p311hofh78tbn45.png

Summary

Microsoft Windows SmartScreen contained a security feature bypass vulnerability that could enable an attacker to circumvent Mark of the Web (MOTW) defenses through a specially crafted malicious file.

Description

Tags

#malware#RCE#Windows#exposed_to_RCE_attack#trending#SmartScreen
users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

0

Social media links

Comments (0)