KEV · Actively exploited
CVE-2024-29988
HIGH 8.8
KEV
SmartScreen Prompt Security Feature Bypass Vulnerability
EPSS
60.50%
exploit likely
percentile 98.3%
CISA Known Exploited Vulnerability
- Added to KEV
- 2024-04-30
- Remediation deadline
- 2024-05-21
- Required action
- Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
- Ransomware
- No
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2022 (Server Core installation) 10.0.20348.2402 Windows Server 2022 10.0.25398.830 Windows Server 2019 (Server Core installation) 10.0.17763.5696 Windows Server 2019 10.0.17763.5696 Windows 11 23H2 · 2023-H2 10.0.22631.3447 Windows 11 22H2 · 2022-H2 10.0.22621.3447 Windows 11 21H2 · 2021-H2 10.0.22000.2899 Windows 10 22H2 · 2022-H2 10.0.19045.4291 Windows 10 21H2 · 2021-H2 10.0.19044.4291 Windows 10 1809 · 2018-09 10.0.17763.5696