Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perform spoofing over a network.
How could an attacker exploit the vulnerability? An attacker would have to convince a user to visit a malicious website, typically via an enticement in email or instant message, or by getting them to open an email attachment. What is the attack vector for this vulnerability? The attack vector is address bar spoofing. A malicious website could spoof the contents of a URL bar via a specially crafted HTML page's long URL and then use it for a phishing attack. According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do? This vulnerability requires that a user with an affected version of Windows access a malicious server. An attacker would have to host a specially crafted server share or website. An attacker would have no way to force users to visit this specially crafted server share or website, but would have to convince them to visit the server share or website, typically by way of an enticement in an email or chat message.
sho odagiri with <a href="https://gmo-cybersecurity.com/">GMO Cybersecurity by Ierae inc</a>, <a href="https://ma.linkedin.com/in/brahim-chebli, https://x.com/x4sh3s">Brahim Chebli</a> with <a href="https://www.deloitte.com/fr/fr/services/consulting-risk/services/offensive-security-center.html">Deloitte France’s Offensive Security Center</a>, <a href="https://ma.linkedin.com/in/brahim-chebli, https://x.com/x4sh3s">Brahim Chebli</a> with <a href="https://www.deloitte.com/fr/fr/services/consulting-risk/services/offensive-security-center.html">Deloitte France’s Offensive Security Center</a>