Windows lockscreen bypass in Cortana

Published: 2018-08-14 23:28:28
Severity Low
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2018-8253
CVSSv3 4 [CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CWE ID CWE-264
Exploitation vector Local
Public exploit N/A
Vulnerable software Windows
Windows Server
Vulnerable software versions Windows 10
Windows Server 2016
Vendor URL Microsoft

Security Advisory

1) Security restrictions bypass

Description

The vulnerability allows a local attacker to bypass lockscreen.

The vulnerability exists within Microsoft Cortana code that allows arbitrary website browsing on the lockscreen. A user with physical access to device can access vimctim's browser and steal browser stored passwords or log on to websites as another user.

Successful exploitation of the vulnerability requires access to the console and the system must have Microsoft Cortana assistance enabled.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8253

Back to List