It has recently been discovered that Windows 11’s Snipping Tool program contained a vulnerability that allowed for the un-cropping of images and the recovery of sensitive data. However, Microsoft has since addressed this issue and released a fix to prevent this from occurring.
Microsoft has launched an updated version of Snipping Tool for Windows 11 and Snip & Sketch for Windows 10 to address the Acropalypse vulnerability, which has been assigned CVE-2023-28303. Although Microsoft has classified the issue as a "Low" priority, some may disagree with this assessment. While the vulnerability may not permit remote code execution like other recently patched Microsoft vulnerabilities, it could still enable malicious actors to access sensitive data through cropped screenshots, including credit card numbers, bank details, private conversations, or any other information visible on your screen during a screenshot.
Fortunately, a solution has been released and is currently being rolled out. To download the update, simply go to the Microsoft Store and navigate to Library > Get Updates. This fix was previously tested on the Windows Insider Canary branch and is now available to everyone.
Be sure to download the fix promptly to resume cropping and saving images to your heart's content.
Source: Bleeping Computer