⚠ Actively exploited
Added to CISA KEV on 2023-07-11. Federal agencies required to patch by 2023-08-01. Required action: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable..
CVE-2023-32049 — Microsoft Windows 10 Version 1607 vulnerability
19 documents10 sources
Severity
8.8HIGHNVD
EPSS
9.1%
top 7.34%
CISA KEV
KEV
Added 2023-07-11
Due 2023-08-01
Exploit
Exploited in wild
Active exploitation observed
Affected products
Timeline
PublishedJul 11
KEV addedJul 11
KEV dueAug 1
Latest updateFeb 13
CISA Required Action: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.
Description
Windows SmartScreen Security Feature Bypass Vulnerability
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages24 packages
Patches
🔴Vulnerability Details
2📋Vendor Advisories
2🕵️Threat Intelligence
14Tenable▶
Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs (CVE-2024-21351, CVE-2024-21412)↗2024-02-13
Qualys
▶