Lucene search
HistoryAug 13, 2024 - 6:15 p.m.
CVE-2024-38213
windows
mark of the web
security bypass
cve-2024-38213
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.011
Percentile
85.0%
Windows Mark of the Web Security Feature Bypass Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.20680
ORmicrosoftwindows_10_1607Range<10.0.14393.7070
ORmicrosoftwindows_10_1809Range<10.0.17763.5936
ORmicrosoftwindows_10_21h2Range<10.0.19044.4529
ORmicrosoftwindows_10_22h2Range<10.0.19045.4529
ORmicrosoftwindows_11_21h2Range<10.0.22000.3019
ORmicrosoftwindows_11_22h2Range<10.0.22621.3737
ORmicrosoftwindows_11_23h2Range<10.0.22631.3737
ORmicrosoftwindows_server_2012Range<6.2.9200.24919
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Range<10.0.14393.7070
ORmicrosoftwindows_server_2019Range<10.0.17763.5936
ORmicrosoftwindows_server_2022Range<10.0.20348.2522
ORmicrosoftwindows_server_2022_23h2Range<10.0.25398.950
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h2 | * | cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_22h2 | * | cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_21h2 | * | cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_22h2 | * | cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:* |
| microsoft | windows_11_23h2 | * | cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
| microsoft | windows_server_2012 | r2 | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2024-38213 Windows Mark of the Web Security Feature Bypass Vulnerability
2024-08-13 17:29:56
mscve
mscve
Windows Mark of the Web Security Feature Bypass Vulnerability
2024-08-13 07:00:00
attackerkb
attackerkb
CVE-2024-38213
2024-08-13 00:00:00
cisa_kev
cisa_kev
Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
2024-08-13 00:00:00
cve
cve
CVE-2024-38213
2024-08-13 18:15:30
vulnrichment
vulnrichment
CVE-2024-38213 Windows Mark of the Web Security Feature Bypass Vulnerability
2024-08-13 17:29:56
ics
ics
CISA Adds Six Known Exploited Vulnerabilities to Catalog
2024-08-13 12:00:00
krebs
krebs
Six 0-Days Lead Microsoftβs August 2024 Patch Push
2024-08-13 21:43:05
thn
thn
Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days
2024-08-14 05:48:00
mskb
mskb
June 11, 2024βKB5039260 (Monthly Rollup)
2024-08-13 07:00:00
June 11, 2024βKB5039294 (Monthly Rollup)
2024-08-13 07:00:00
June 11, 2024βKB5039225 (OS Build 10240.20680)
2024-08-13 07:00:00
nessus
nessus
KB5039294: Windows Server 2012 R2 Security Update (June 2024)
2024-06-11 00:00:00
KB5039260: Windows Server 2012 Security Update (June 2024)
2024-06-11 00:00:00
KB5039225: Windows 10 LTS 1507 Security Update (June 2024)
2024-06-11 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5039225)
2024-06-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5039213)
2024-06-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5039211)
2024-06-12 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, August 2024 Security Update Review
2024-08-13 20:31:30
kaspersky
kaspersky
KLA71485 Multiple vulnerabilities in Microsoft Products (ESU)
2024-08-13 00:00:00
KLA71484 Multiple vulnerabilities in Microsoft Windows
2024-08-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - August 2024
2024-08-13 23:36:30
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.011
Percentile
85.0%
Related for NVD:CVE-2024-38213