smartscreen (#694)

* Microsoft Releases Security Updates for Multiple Products - 20240313001 * Format markdown files * Apache Tomcat Denial of Service Vulnerabilities * Format markdown files * Update 20240327002-Apache-Tomcat-Denial-of-Service-Vulnerabilities.md Minor grammar and syntax changes * Qualcomm Critical Security Vulnerability - 20240403001 * Format markdown files * Microsoft Releases April Security Updates * Format markdown files * April 2024 Security Updates * Format markdown files * Delete docs/advisories/20240403001-Qualcomm-Critical-Security-Vulnerabilities.md Not needed * Mozilla vulns * Format markdown docs * MS Exchange * Format markdown docs * Smart screen * Format markdown docs * Update 20240501001-Microsoft-SmartScreen-Prompt-Vulnerability.md Fix table information * Format markdown docs --------- Co-authored-by: GitHub Actions <actions@github.com> Co-authored-by: Joshua Hitchen (DGov) <86041569+DGovEnterprise@users.noreply.github.com> Co-authored-by: thiagoai1 <thiagoai1@users.noreply.github.com> Co-authored-by: Adon Metcalfe <adon.metcalfe@dpc.wa.gov.au> Co-authored-by: DGovEnterprise <DGovEnterprise@users.noreply.github.com>
wagov · May 1, 2024 · cdc0e6b · cdc0e6b
1 parent cdde794
commit cdc0e6b
Showing 1 changed file with 25 additions and 0 deletions.
diff --git a/docs/advisories/20240501001-Microsoft-SmartScreen-Prompt-Vulnerability.md b/docs/advisories/20240501001-Microsoft-SmartScreen-Prompt-Vulnerability.md
@@ -0,0 +1,25 @@
+# Microsoft SmartScreen Prompt Security Vulnerability - 20240501001
+
+## Overview
+
+SmartScreen Prompt Security Feature Bypass Vulnerability
+
+## What is vulnerable?
+
+| CVE                                                               | Severity      | CVSS | Product(s) Affected                                                                 | Summary                                                  | Dated       |
+| ----------------------------------------------------------------- | ------------- | ---- | ----------------------------------------------------------------------------------- | -------------------------------------------------------- | ----------- |
+| [CVE-2024-29988](https://nvd.nist.gov/vuln/detail/CVE-2024-29988) | **Important** | 8.8  | **[Version](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29988)** | SmartScreen Prompt Security Feature Bypass Vulnerability | Apr 9, 2024 |
+
+## What has been observed?
+
+There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.
+
+## Recommendation
+
+The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *one month...* (refer [Patch Management](../guidelines/patch-management.md)):
+
+## Additional References
+
+- [Microsoft - SmartScreen Prompt Security Feature Bypass Vulnerability](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29988)
+
+- [CVE-2024-29988](https://www.cve.org/CVERecord?id=CVE-2024-29988)