CVE-2023-24880
4.4MEDIUMWindows SmartScreen Security Feature Bypass Vulnerability
Veröffentlicht: 3/14/2023Aktualisiert: 10/27/2025
CISA Bekannte Ausgenutzte Schwachstelle
Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.
Erforderliche Maßnahme:
Apply updates per vendor instructions.
Fälligkeitsdatum:
2023-04-04
Bekannte Ransomware-Nutzung
Beschreibung
Windows SmartScreen Security Feature Bypass Vulnerability
KI-AnalyseKI-gestützt
Betroffene Produkte
microsoftwindows_10_1607
microsoftwindows_10_1809
microsoftwindows_10_20h2
microsoftwindows_10_21h2
microsoftwindows_10_22h2
microsoftwindows_11_21h2
microsoftwindows_11_22h2
microsoftwindows_server_2016
microsoftwindows_server_2019
microsoftwindows_server_2022
Referenzen
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24880PatchVendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24880PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-24880US Government Resource