CVE-2022-44698 - Microsoft Defender SmartScreen Security Feature Bypass Vulnerability

CVE-2022-44698: Microsoft | Defender

Date Added:
2022-12-13

Due Date:
2023-01-03

Vulnerability Name: Microsoft Defender SmartScreen Security Feature Bypass Vulnerability

Description: Microsoft Defender SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.

Known To Be Used in Ransomware Campaigns?: Known

Action: Apply updates per vendor instructions.

Additional Notes: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44698; https://nvd.nist.gov/vuln/detail/CVE-2022-44698

Free security scan for your website

Don't show website scan report rating on the leaderboard