Main Vulnerability Database Vulnerabilities #VU73507

#VU73507 Security features bypass in Windows and Windows Server - CVE-2023-24880

Published: March 14, 2023

Vulnerability identifier: #VU73507

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:A/U:Amber

CVE-ID: CVE-2023-24880

CWE-ID: CWE-254

Exploitation vector: Remote access

Exploit availability: The vulnerability is being exploited in the wild

Vulnerable software:
Windows
Windows Server

Software vendor:
Microsoft

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to incorrect implementation of the Windows SmartScreen Security Feature. A remote attacker can trick the victim to open a specially crafted file and bypass the Mark of the Web (MOTW) defenses.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install updates from vendor's website.

External links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-24880

#VU73507 Security features bypass in Windows and Windows Server - CVE-2023-24880

Description

Remediation

External links

Please verify you're human