CVE-2022-41091
Windows Mark of the Web Security Feature Bypass Vulnerability
In short
A security feature in Windows that warns users about potentially dangerous files downloaded from the internet can be bypassed. Attackers could craft files that appear safe to Windows, allowing malicious content to run without proper warnings.
Technical detail
CWE-863 (Incorrect Authorization) allows attackers to bypass Windows Mark of the Web (MOTW) security feature through specially crafted files. The vulnerability requires user interaction to open the file but results in loss of a critical security boundary that typically prevents execution of untrusted content.
Summary generated and translated by AI from the official description.
Windows Mark of the Web Security Feature Bypass Vulnerability
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C
Affected products
Microsoft · Windows 10 Version 1507Microsoft · Windows 10 Version 1607Microsoft · Windows 10 Version 1809Microsoft · Windows 10 Version 20H2Microsoft · Windows 10 Version 21H1Microsoft · Windows 10 Version 21H2Microsoft · Windows 10 Version 22H2Microsoft · Windows 11 version 21H2Microsoft · Windows 11 version 22H2Microsoft · Windows Server 2016Microsoft · Windows Server 2016 (Server Core installation)Microsoft · Windows Server 2019Microsoft · Windows Server 2019 (Server Core installation)Microsoft · Windows Server 2022Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →