11 matches found
Exploit for Protection Mechanism Failure in Microsoft
CVE-2024-29988-exploit Exploit for Microsoft SmartScreen malic...
Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included
Microsoft has released security updates for the month of April 2024 to remediate a record 149 flaws, two of which have come under active exploitation in the wild. Of the 149 flaws, three are rated Critical, 142 are rated Important, three are rated Moderate, and one is rated Low in severity. The...
CVE-2024-29988
creationtimestamp| type| source ---|---|--- 2024-04-09 21:41:41+00:00| exploited| https://t.me/ctinow/214562 2024-04-10 00:21:48+00:00| exploited| https://t.me/ctinow/214580 2024-04-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1267 2024-04-10 09:11:17+00:00| seen|...
April’s Patch Tuesday Brings Record Number of Fixes
If only Patch Tuesdays came around infrequently -- like total solar eclipse rare -- instead of just creeping up on us each month like The Man in the Moon. Although to be fair, it would be tough for Microsoft to eclipse the number of vulnerabilities fixed in this months patch batch -- a record 147...
CVE-2024-29988
SmartScreen Prompt Security Feature Bypass Vulnerability...
CVE-2024-29988
CVE-2024-29988 is a Microsoft Windows SmartScreen security feature bypass vulnerability (MotW bypass) that enables arbitrary code execution when a user opens a zip/executable delivered in a crafted file. Public exploit activity exists (GitHub exploit repository) and reports indicate in-the-wild u...
KB5036894: Windows 11 version 21H2 Security Update (April 2024)
The remote Windows host is missing security update 5036894. It is, therefore, affected by multiple vulnerabilities - SmartScreen Prompt Security Feature Bypass Vulnerability CVE-2024-29988 - Secure Boot Security Feature Bypass Vulnerability CVE-2024-20669, CVE-2024-26168, CVE-2024-26171,...
VulnCheck KEV: CVE-2024-29988
Microsoft SmartScreen Prompt contains a security feature bypass vulnerability that allows an attacker to bypass the Mark of the Web MotW feature. This vulnerability can be chained with CVE-2023-38831 and CVE-2024-21412 to execute a malicious file...
CVE-2024-29988
SmartScreen Prompt Security Feature Bypass Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
KB5036909: Windows Server 2022 / Azure Stack HCI 22H2 Security Update (April 2024)
The remote Windows host is missing security update 5036909. It is, therefore, affected by multiple vulnerabilities - SmartScreen Prompt Security Feature Bypass Vulnerability CVE-2024-29988 - Secure Boot Security Feature Bypass Vulnerability CVE-2024-20669, CVE-2024-26168, CVE-2024-26171,...
KB5036910: Windows Server version 23H2 Security Update (April 2024)
The remote Windows host is missing security update 5036910. It is, therefore, affected by multiple vulnerabilities - SmartScreen Prompt Security Feature Bypass Vulnerability CVE-2024-29988 - Secure Boot Security Feature Bypass Vulnerability CVE-2024-20669, CVE-2024-26168, CVE-2024-26171,...