Primary

Context

Microsoft Windows Security App Spoofing Vulnerability

Vulnerability

A spoofing vulnerability has been identified in the Windows Security App, allowing an authorized attacker to externally control file names or paths and perform spoofing locally. This issue affects several different versions of the Windows Security App.

Impact

Exploitation of this vulnerability could lead to unauthorized spoofing actions within the Windows Security App.

Remediation

Users can check if they are protected from this vulnerability by ensuring their Windows Security App version is greater than the fixed version. The current version can be found in the 'About' section of the app's settings. For more information on the vulnerability and the security update, please visit the Microsoft Security Update Guide.

Added: Jun 10, 2025, 7:04 PM

Updated: Jun 10, 2025, 7:04 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows Security App Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating