by vicarius
log in join community
by @jakaba
20 Dec 2023
#cve_analysis

Write a blog analysis for a CVE

publish

Windows SmartScreen Security Feature bypass (CVE-2023-24880)

by @jakaba
by @jakaba
20 Dec 2023
#cve_analysis

Write a blog analysis for a CVE

publish

Windows SmartScreen Security Feature bypass (CVE-2023-24880)

CVEs

CVE-2023-24880
4.4 Low Severity

OS

W12
Windows 11 21H2Microsoft
10.0.22000.2777.*
10.0.22000.2777.*
10.0.22000.3260.*
10.0.22000.3260.*
10.0.22000.2710.*
10.0.22000.2899.*
10.0.22000.2899.*
22000.2899.*
22000.2899.*
22000.3019.*
W12
Windows 11 22H2Microsoft
10.0.22621.6060.*
10.0.22621.6060.*
10.0.22621.5909.*
10.0.22621.5909.*
10.0.22621.5900.*
10.0.22621.5900.*
10.0.22621.5768.*
10.0.22621.5768.*
10.0.22621.5624.*
10.0.22621.5624.*
W12
Windows 10 22H2Microsoft
10.0.19045.6575.*
10.0.19045.6575.*
10.0.19045.6575.*
10.0.19045.6456.*
10.0.19045.6456.*
10.0.19045.6456.*
10.0.19045.6332.*
10.0.19045.6332.*
10.0.19045.6332.*
10.0.19045.6321.*
W12
Windows 10 21H2Microsoft
10.0.19044.6575.*
10.0.19044.6575.*
10.0.19044.6575.*
10.0.19044.6456.*
10.0.19044.6456.*
10.0.19044.6456.*
10.0.19044.6218.*
10.0.19044.6218.*
10.0.19044.6218.*
10.0.19044.6332.*
W11
Windows 10 1607Microsoft
10.0.14393.8594.*
10.0.14393.8594.*
10.0.14393.8519.*
10.0.14393.8519.*
10.0.14393.8422.*
10.0.14393.8422.*
10.0.14393.8416.*
10.0.14393.8416.*
10.0.14393.8330.*
10.0.14393.8330.*
W11
Windows 10 1809Microsoft
10.0.17763.8027.*
10.0.17763.8027.*
10.0.17763.7919.*
10.0.17763.7919.*
10.0.17763.7792.*
10.0.17763.7792.*
10.0.17763.7783.*
10.0.17763.7783.*
10.0.17763.7678.*
10.0.17763.7678.*
Windows Server 2022
Windows Server 2022Microsoft
10.0.20348.4405.*
10.0.20348.4405.*
10.0.20348.4405.*
10.0.20348.4346.*
10.0.20348.4346.*
10.0.20348.4346.*
10.0.20348.4297.*
10.0.20348.3207.*
10.0.20348.3207.*
10.0.20348.3207.*
Windows Server 2019
Windows Server 2019Microsoft
10.0.17763.8027.*
10.0.17763.7922.*
10.0.17763.7919.*
10.0.17763.7792.*
10.0.17763.7783.*
10.0.17763.7678.*
10.0.17763.7558.*
10.0.17763.7136.*
10.0.17763.7434.*
10.0.17763.7314.*
Windows Server 2016
Windows Server 2016Microsoft
10.0.14393.8594.*
10.0.14393.8524.*
10.0.14393.8519.*
10.0.14393.8519.*
10.0.14393.8422.*
10.0.14393.8416.*
10.0.14393.8330.*
10.0.14393.8246.*
10.0.14393.8066.*
10.0.14393.8148.*
W12
Windows 10 20H2Microsoft
10.0.19042.2788.*
10.0.19042.2788.*
10.0.19042.2788.*
10.0.19042.2673.*
10.0.19042.2673.*
10.0.19042.2673.*
10.0.19042.2546.*
10.0.19042.2546.*
10.0.19042.2546.*
10.0.19042.2364.*

Screenshots from the blog posts

images/clpwpvahp2p311hofh78tbn45.pngimages/clpwpvahp2p311hofh78tbn45.png

Summary

Microsoft Windows SmartScreen contained a security feature bypass vulnerability that could enable an attacker to circumvent Mark of the Web (MOTW) defenses through a specially crafted malicious file.

Description

Tags

#malware#RCE#Windows#exposed_to_RCE_attack#trending#SmartScreen
users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

0

Social media links

Comments (0)