Lucene search
HistoryNov 09, 2022 - 10:15 p.m.
CVE-2022-41049
cve-2022-41049
windows
mark of the web
security
feature bypass
vulnerability
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.004
Percentile
74.8%
Windows Mark of the Web Security Feature Bypass Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.19567
ORmicrosoftwindows_10_1607Range<10.0.14393.5501
ORmicrosoftwindows_10_1809Range<10.0.17763.3650
ORmicrosoftwindows_10_20h2Range<10.0.19042.2251
ORmicrosoftwindows_10_21h1Range<10.0.19043.2251
ORmicrosoftwindows_10_21h2Range<10.0.19044.2251
ORmicrosoftwindows_10_22h2Range<10.0.19045.2251
ORmicrosoftwindows_11_21h2Range<10.0.22000.1219
ORmicrosoftwindows_11_22h2Range<10.0.22621.819
ORmicrosoftwindows_server_2016Range<10.0.14393.5501
ORmicrosoftwindows_server_2019Range<10.0.17763.3650
ORmicrosoftwindows_server_2022Range<10.0.20348.1249
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h1 | * | cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_22h2 | * | cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_21h2 | * | cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_22h2 | * | cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2016 | * | cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
Related
attackerkb
attackerkb
CVE-2022-41049
2022-11-09 00:00:00
cvelist
cvelist
CVE-2022-41049 Windows Mark of the Web Security Feature Bypass Vulnerability
2022-11-09 00:00:00
mscve
mscve
Windows Mark of the Web Security Feature Bypass Vulnerability
2022-11-08 08:00:00
prion
prion
Security feature bypass
2022-11-09 22:15:00
cisa_kev
cisa_kev
cve
cve
CVE-2022-41049
2022-11-09 22:15:19
talosblog
talosblog
Following the LNK metadata trail
2023-01-19 13:00:19
avleonov
avleonov
thn
thn
mskb
mskb
November 8, 2022βKB5019970 (OS Build 10240.19567)
2023-01-26 08:00:00
November 8, 2022βKB5019980 (OS Build 22621.819)
2023-01-26 08:00:00
November 8, 2022βKB5019961 (OS Build 22000.1219)
2023-01-26 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5019970)
2022-11-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5019959)
2022-11-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5019961)
2023-08-08 00:00:00
nessus
nessus
KB5019970: Windows 10 LTS 1507 Security Update (November 2022)
2022-11-08 00:00:00
KB5019959: Windows 10 Version 20H2 / 21H1 / 21H2 / 22H2 Security Update (November 2022)
2022-11-08 00:00:00
KB5019980: Windows 11 22H2 Security Update (November 2022)
2022-11-08 00:00:00
kaspersky
kaspersky
KLA20047 Multiple vulnerabilities in Microsoft Windows
2022-11-08 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2022
2022-11-08 20:02:57
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.004
Percentile
74.8%
Related for NVD:CVE-2022-41049