Bitk

**Name of the Vulnerable Software and Affected Versions** KioWare for Windows versions through 8.33 **Description** The issue is related to an incomplete blacklist filter for blocked dialog boxes on Windows 10, allowing attackers to open a file dialog box via the `showDirectoryPicker()` function. This can then be used to open an unprivileged command prompt. **Recommendations** For versions through 8.33, consider disabling the `showDirectoryPicker()` function as a temporary workaround until a patch is available. Restrict access to blocked dialog boxes to minimize the risk of exploitation.