Patch Tuesday
-
Cybersecurity
Urgent: Microsoft 365 Apps being exploited in wild via CVSS 9.8 bug
Get domain admin by... just emailing the domain admin?
Read More » -
Cybersecurity
Microsoft’s Valentine’s Day gift: Patches for 3 CVEs being exploited
February’s Patch Tuesday brings the post-Valentine’s Day hangover of 75 bug fixes from Microsoft including three for CVEs known to…
Read More » -
Cybersecurity
Gird your loins: Patch Tuesday’s back
It’s that time of the month again: Microsoft has pushed out 98 security patches for January’s Patch Tuesday: 11 are…
Read More » -
Cybersecurity
2022’s last Patch Tuesday brings Citrix, VMware, MSFT zero days
Critical Citrix, VMware, Microsoft vulnerabilities all need patching
Read More » -
Cybersecurity
Patch Tuesday: MSFT key storage bug exploited, gives SYSTEM
Six MSFT vulns being actively exploited. Get patchin'
Read More » -
Cloud
This Azure bug is a perfect CVSS 10, gives you control over K8s clusters
A critical vulnerability in an Azure tool that lets users manage Kubernetes clusters can be exploited remotely without authentication to…
Read More » -
Cybersecurity
Patch Tuesday: Critical Windows TCP/IP vuln allows bad packets to gain pre-auth RCE, plus 0day
More than half the release involves RCE - time to get patching.
Read More » -
Cybersecurity
Patch Tuesday: Exploited Windows 0day, zero-click pre-auth RCE vuln in RPC
Those 700,000 folks with RPC exposed to the internet should probably...
Read More » -
Cybersecurity
A million Microsoft machines exposed to a zero click, CVSS 9.8 bug
Over a million Microsoft machines appear potentially exposed to a wormable critical new vulnerability, CVE-2022-26809 in Microsoft’s ubiquitous remote procedure…
Read More »