What is CVE-2023-24880?

CVE-2023-24880 is a Microsoft Windows SmartScreen security feature bypass vulnerability that allows an attacker to evade Mark of the Web (MOTW) defenses.

What is the severity of CVE-2023-24880?

CVE-2023-24880 has a severity rating of 4.4, which is considered medium.

How does CVE-2023-24880 affect Microsoft Windows?

CVE-2023-24880 affects Microsoft Windows by bypassing the SmartScreen security feature, allowing attackers to evade MOTW defenses through a malicious file.

How can I fix CVE-2023-24880 on Windows 10?

To fix CVE-2023-24880 on Windows 10 version 21H2, install the patch provided by Microsoft (KB5023696) from the official Microsoft catalog update site.

How can I fix CVE-2023-24880 on Windows 11?

To fix CVE-2023-24880 on Windows 11 version 21H2, install the patch provided by Microsoft (KB5023698) from the official Microsoft catalog update site.

Vulnerability/
CVE-2023-24880

Exploited

medium

5.4

CWE

863

14/3/2023

4/2/2025

CVE-2023-24880: Windows SmartScreen Security Feature Bypass Vulnerability

First published: Tue Mar 14 2023(Updated: )

Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows 11	=21H2	fix available externally
Microsoft Windows 11	=22H2	fix available externally
Microsoft Windows 10	=21H2	fix available externally
Microsoft Windows 10	=22H2	fix available externally
Microsoft Windows Server 2019		fix available externally
Microsoft Windows Server 2016		fix available externally
Microsoft Windows 11	=21H2	fix available externally
Microsoft Windows 10	=1607	fix available externally
Microsoft Windows 10	=1809	fix available externally
Microsoft Windows Server 2016		fix available externally
Microsoft Windows 10	=22H2	fix available externally
Microsoft Windows 10	=1809	fix available externally
Microsoft Windows 10	=20H2	fix available externally
Microsoft Windows 10	=1809	fix available externally
Microsoft Windows 10	=21H2	fix available externally
Microsoft Windows Server 2022		fix available externally fix available externally
Microsoft Windows 10	=22H2	fix available externally
Microsoft Windows Server 2019		fix available externally
Microsoft Windows 11	=22H2	fix available externally
Microsoft Windows 10	=21H2	fix available externally
Microsoft Windows Server 2022		fix available externally fix available externally
Microsoft Windows 10	=20H2	fix available externally
Microsoft Windows 10	=20H2	fix available externally
Microsoft Windows 10	=1607	fix available externally
Microsoft Windows
Microsoft Windows 10 Version 1607 x86	<10.0.14393.5786
Microsoft Windows 10 1809	<10.0.17763.4131
Microsoft Windows 10 20H2	<10.0.19042.2728
Microsoft Windows 10 21h2	<10.0.19044.2728
Microsoft Windows 10 22h2	<10.0.19045.2728
Microsoft Windows 11 21h2	<10.0.22000.1696
Microsoft Windows 11 22h2	<10.0.22000.1413
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows Server 2022
	<10.0.14393.5786
	<10.0.17763.4131
	<10.0.19042.2728
	<10.0.19044.2728
	<10.0.19045.2728
	<10.0.22000.1696
	<10.0.22000.1413

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24880

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-24880?
CVE-2023-24880 is a Microsoft Windows SmartScreen security feature bypass vulnerability that allows an attacker to evade Mark of the Web (MOTW) defenses.
What is the severity of CVE-2023-24880?
CVE-2023-24880 has a severity rating of 4.4, which is considered medium.
How does CVE-2023-24880 affect Microsoft Windows?
CVE-2023-24880 affects Microsoft Windows by bypassing the SmartScreen security feature, allowing attackers to evade MOTW defenses through a malicious file.
How can I fix CVE-2023-24880 on Windows 10?
To fix CVE-2023-24880 on Windows 10 version 21H2, install the patch provided by Microsoft (KB5023696) from the official Microsoft catalog update site.
How can I fix CVE-2023-24880 on Windows 11?
To fix CVE-2023-24880 on Windows 11 version 21H2, install the patch provided by Microsoft (KB5023698) from the official Microsoft catalog update site.

exploited/true
collector/msrc
agent/type
agent/first-publish-date
agent/description
agent/remedy
agent/weakness
agent/title
collector/msrc-cve
source/Microsoft
agent/software-canonical-lookup
agent/severity
agent/author
agent/event
ransomware/true
collector/cisa-known-exploited
source/CISA
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
agent/softwarecombine
collector/nvd-api
source/NVD
agent/software-canonical-lookup-request
collector/nvd-cve
collector/nvd-index
vendor/microsoft
canonical/microsoft windows 11
version/microsoft windows 11/21h2
version/microsoft windows 11/22h2
canonical/microsoft windows 10
version/microsoft windows 10/21h2
version/microsoft windows 10/22h2
canonical/microsoft windows server 2019
canonical/microsoft windows server 2016
version/microsoft windows 10/1607
version/microsoft windows 10/1809
version/microsoft windows 10/20h2
canonical/microsoft windows server 2022
canonical/microsoft windows
canonical/microsoft windows 10 version 1607 x86
canonical/microsoft windows 10 1809
canonical/microsoft windows 10 20h2
canonical/microsoft windows 10 21h2
canonical/microsoft windows 10 22h2
canonical/microsoft windows 11 21h2
canonical/microsoft windows 11 22h2