For an issue impacting its screenshot editing capabilities in both Windows 10 and Windows 11, Microsoft disclosed a new information disclosure vulnerability on Friday.
The aCropalypse vulnerability (CVE-2023-28303) could allow malicious actors to recover portions of screenshots, perhaps exposing confidential information.
According to Microsoft, the weakness has a low CVSS score of 3.3 and affects Snip & Sketch in Windows 10 and Snipping Tool in Windows 11 (but not Snipping Tool in Windows 10). It also requires user involvement to be exploited.
According to the advisory, “The severity of this vulnerability is Low because successfully read more Microsoft Fixes Security Flaw in Windows Screenshot Tools.
Stay up-to-date with the latest cybersecurity news and increase your cybersecurity awareness through ReconBee.com‘s in-depth coverage of the newest threats, breaches, and solutions.