Security researchers from SafeBreach labs havepublishedthe code for software that can roll back Windows to reopen old security vulnerabilities.
Windows 10, 11, and Server versions 2019 and later are affected.
SafeBreach released the Downdate software on GitHub to facilitate further research of the issue.
Microsoft lists the threat under two CVEs 2024-21302and2024-38202.
It started working on a solution when SafeBreach alerted it to the vulnerability in February.
In the meantime, developers have a mitigation method that can provide an extra layer of security.
However, the procedure risks making a system unbootable if users aren’t careful.
The rule also applies to external boot media and the Windows Recovery Environment.
The company also suggests that users remain cautious when checking email and only install software from trusted sources.
