⚠ Actively exploited

Added to CISA KEV on 2024-04-30. Federal agencies required to patch by 2024-05-21. Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable..

CVE-2024-29988 — Protection Mechanism Failure in Microsoft Windows 10 Version 1809

CWE-693 — Protection Mechanism Failure18 documents12 sources

Severity

8.8HIGHNVD

VulnCheck7.8CISA7.8

EPSS

62.8%

top 1.61%

CISA KEV

KEV

Added 2024-04-30

Due 2024-05-21

Exploit

Exploited in wild

Active exploitation observed

Affected products

Microsoft Windows 10 Version 1809 Microsoft Windows 10 Version 21h2 Microsoft Windows 10 Version 22h2 +13 more

Timeline

PublishedApr 9

KEV addedApr 30

KEV dueMay 21

Latest updateAug 15

CISA Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Description

SmartScreen Prompt Security Feature Bypass Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages16 packages

▶NVDmicrosoft/windows< 10.0.17763.5696+2

▶NVDmicrosoft/windows_10_1809< 10.0.17763.5696

▶NVDmicrosoft/windows_10_21h2< 10.0.19044.4291

▶NVDmicrosoft/windows_10_22h2< 10.0.19045.4291

▶NVDmicrosoft/windows_11_21h2< 10.0.22000.2899

Patches

Patch: msrc.microsoft.com ↗Patch: msrc.microsoft.com ↗

🔴Vulnerability Details

CVEList

SmartScreen Prompt Security Feature Bypass Vulnerability↗2024-04-09

▶

GHSA

GHSA-qpqh-hxc9-r48w: SmartScreen Prompt Security Feature Bypass Vulnerability↗2024-04-09

▶

VulnCheck

Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability↗2024

▶

📋Vendor Advisories

CISA

Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability↗2024-04-30

▶

Microsoft

SmartScreen Prompt Security Feature Bypass Vulnerability↗2024-04-09

▶

🕵️Threat Intelligence

Trendmicro

CVE-2024-38213: Copy2Pwn Exploit Evades Windows Web Protections↗2024-08-15

▶

Bleepingcomputer

New Windows SmartScreen bypass exploited as zero-day since March↗2024-08-13

▶

Qualys

Microsoft and Adobe Patch Tuesday, April 2024 Security Update Review↗2024-04-09

▶

Trendmicro

The April 2024 Security Updates Review↗2024-04-09

▶

Bleepingcomputer

Microsoft fixes two Windows zero-days exploited in malware attacks↗2024-04-09

▶