CVE-2024-21351

CVSS 3.1 Score 7.6 of 10 (high)

Details

Published Feb 13, 2024

Updated: Aug 14, 2024

CWE ID 94

Summary

CVE-2024-21351 is a newly disclosed vulnerability affecting Windows SmartScreen security feature. Maliciously crafted files can bypass this security measure, potentially exposing users to phishing attacks or malware infection. The flaw is reportedly related to the way SmartScreen processes certain types of files, enabling attackers to evade the security checks. Microsoft is working on a patch to address this issue, and users are advised to enable and maintain up-to-date antivirus software as a temporary mitigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ugc1Ef
https://www.cve.org/CVERecord?id=CVE-2024-21351
https://nvd.nist.gov/vuln/detail/CVE-2024-21351

Back to Vulnerability Database

CVE-2024-21351

CVSS 3.1 Score 7.6 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations