#microsoft-patch-tuesday

[ follow ]
#privilege-escalation #windows-10-end-of-support #zero-day-vulnerabilities #elevation-of-privilege #cve
fromThe Hacker News
1 week ago

Two New Windows Zero-Days Exploited in the Wild - One Affects Every Version Ever Shipped

Of the 183 vulnerabilities, eight of them are non-Microsoft issued CVEs. As many as 165 flaws have been rated as Important in severity, followed by 17 as Critical and one as Moderate. The vast majority of them relate to elevation of privilege vulnerabilities (84), with remote code execution (33), information disclosure (28), spoofing (14), denial-of-service (11), and security feature bypass (11) issues accounting for the rest of them.
Information security
Information security
fromTheregister
1 week ago

Microsoft frightful Patch Tuesday: 175+ CVEs, 3 under attack

Microsoft's October Patch Tuesday fixes 175 Microsoft vulnerabilities and 21 non-Microsoft CVEs, including three under active attack and 17 critical flaws.
Information security
fromThe Hacker News
1 month ago

Microsoft Fixes 80 Flaws - Including SMB PrivEsc and Azure CVSS 10.0 Bugs

Microsoft patched 80 vulnerabilities, including eight Critical; nearly half were privilege escalation flaws and one SMB elevation (CVE-2025-55234) was publicly known.
fromComputerWeekly.com
3 months ago

July Patch Tuesday brings over 130 new flaws to address | Computer Weekly

An attacker could map out database structures, identify injection points, and gather information to support more targeted intrusions. By accessing uninitialised memory, they might recover fragments of authentication credentials, potentially enabling further attacks against the database or related systems.
Information security
[ Load more ]