CVE-2023-36025 - Microsoft Windows SmartScreen Security Feature Bypass Vulnerability

Vulnerability Name

Microsoft Windows SmartScreen Security Feature Bypass Vulnerability

Description

Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to bypass Windows Defender SmartScreen checks and their associated prompts.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36025

https://nvd.nist.gov/vuln/detail/CVE-2023-36025

Related News Articles

Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-DaysAugust 14, 2024

Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Day ExploitsAugust 14, 2024

New Windows SmartScreen bypass exploited as zero-day since MarchAugust 14, 2024