Assigner | microsoft |
Reserved | 2023-06-23 |
Published | 2023-10-10 |
Updated | 2024-08-02 |
Description
Windows Mark of the Web Security Feature Bypass Vulnerability
MEDIUM: 5.4 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L/E:F/RL:O/RC:C |
CISA Known Exploited Vulnerability
- Date added: 2023-11-16
- Due date: 2023-12-07
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Problem types
Security Feature Bypass
Product status
10.0.0 before 10.0.17763.4974
affected
10.0.0 before 10.0.17763.4974
affected
10.0.0 before 10.0.17763.4974
affected
10.0.0 before 10.0.20348.2031
affected
10.0.0 before 10.0.22000.2538
affected
10.0.0 before 10.0.19041.3570
affected
10.0.0 before 10.0.22621.2428
affected
10.0.0 before 10.0.19045.3570
affected
10.0.0 before 10.0.10240.20232
affected
10.0.0 before 10.0.14393.6351
affected
10.0.0 before 10.0.14393.6351
affected
10.0.0 before 10.0.14393.6351
affected
6.0.0 before 6.0.6003.22317
affected
6.0.0 before 6.0.6003.22317
affected
6.0.0 before 6.0.6003.22317
affected
6.1.0 before 6.1.7601.26769
affected
6.0.0 before 6.1.7601.26769
affected
6.2.0 before 6.2.9200.24523
affected
6.2.0 before 6.2.9200.24523
affected
6.3.0 before 6.3.9600.21620
affected
6.3.0 before 6.3.9600.21620
affected
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36584 (Windows Mark of the Web Security Feature Bypass Vulnerability) vendor-advisory
cve.org CVE-2023-36584
nvd.nist.gov CVE-2023-36584
Download JSON
Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.