⚠ Actively exploited
Added to CISA KEV on 2022-11-14. Federal agencies required to patch by 2022-12-09. Required action: Apply updates per vendor instructions..

CVE-2022-41049

CWE-2746 documents6 sources
Severity
5.4MEDIUM
EPSS
13.1%
top 5.90%
CISA KEV
KEV
Added 2022-11-14
Due 2022-12-09
Exploit
Exploited in wild
Active exploitation observed
Affected products
23
Microsoft Windows 10 Version 1507Microsoft Windows 10 Version 1607Microsoft Windows 10 Version 1809+20 more
Timeline
PublishedNov 9
KEV addedNov 14
KEV dueDec 9
CISA Required Action: Apply updates per vendor instructions.

Description

Windows Mark of the Web Security Feature Bypass Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:LExploitability: 2.8 | Impact: 2.5

Affected Packages24 packages

NVDmicrosoft/windows< 10.0.14393.5501+2
NVDmicrosoft/windows_10_1507< 10.0.10240.19567
NVDmicrosoft/windows_10_1607< 10.0.14393.5501
NVDmicrosoft/windows_10_1809< 10.0.17763.3650
NVDmicrosoft/windows_10_20h2< 10.0.19042.2251

Patches

Patch: msrc.microsoft.comPatch: msrc.microsoft.com

🔴Vulnerability Details

3
GHSA
GHSA-wjh3-j799-8ppv: Windows Mark of the Web Security Feature Bypass Vulnerability2022-11-10
CVEList
Windows Mark of the Web Security Feature Bypass Vulnerability2022-11-09
VulnCheck
Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability2022

📋Vendor Advisories

2
CISA
Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability2022-11-14
Microsoft
Windows Mark of the Web Security Feature Bypass Vulnerability2022-11-08
CVE-2022-41049 (MEDIUM CVSS 5.4) | Windows Mark of the Web Security Fe | cvebase.io