Article: CVE-2022-22198 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22198 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:03 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
Article: CVE-2022-22197 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22197 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:03 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22196 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22196 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:03 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22195 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22195 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
Article: CVE-2022-22194 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22194 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22193 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22193 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22191 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22191 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
Article: CVE-2022-22190 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22190 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22189 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22189 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22188 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22188 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
Article: CVE-2022-22187 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22187 Published: 2022 04 14 16:15:08 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22186 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22186 Published: 2022 04 14 16:15:07 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22185 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22185 Published: 2022 04 14 16:15:07 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
Article: CVE-2022-22183 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22183 Published: 2022 04 14 16:15:07 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22182 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22182 Published: 2022 04 14 16:15:07 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
|
Article: CVE-2022-22181 - published over 2 years ago. Content: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22181 Published: 2022 04 14 16:15:07 Received: 2022 04 14 18:23:02 Feed: National Vulnerability Database Source: National Vulnerability Database Category: Alerts Topic: Vulnerabilities |
Article: FBI links largest crypto hack ever to Lazarus state hackers - published over 2 years ago. Content: https://www.bleepingcomputer.com/news/security/fbi-links-largest-crypto-hack-ever-to-lazarus-state-hackers/ Published: 2022 04 14 17:40:53 Received: 2022 04 14 18:22:07 Feed: Bleeping Computer - All News Feeds Source: Bleeping Computer Category: News Topic: Cyber Security |
|
Article: New ZingoStealer infostealer drops more malware, cryptominers - published over 2 years ago. Content: https://www.bleepingcomputer.com/news/security/new-zingostealer-infostealer-drops-more-malware-cryptominers/ Published: 2022 04 14 18:10:05 Received: 2022 04 14 18:22:07 Feed: Bleeping Computer - All News Feeds Source: Bleeping Computer Category: News Topic: Cyber Security |
|
Article: Mohawk Valley Community College helps host cybersecurity games finals - Utica Observer Dispatch - published over 2 years ago. Content: MVCC along with its partners at the University of South Florida, recently held the National Final of the cybersecurity Games. https://www.uticaod.com/story/news/2022/04/14/mvcc-usf-host-national-final-establish-cybersecurity-games/7317468001/ Published: 2022 04 14 15:20:06 Received: 2022 04 14 18:21:32 Feed: Google Alert – cybersecurity Source: Google Alert Category: News Topic: Cyber Security |
Article: Authorities warn dangerous new malware can shut down, sabotage industrial sites - published over 2 years ago. Content: Federal authorities, including the Cybersecurity and Infrastructure Security Agency, FBI and Department of Energy on Thursday urged critical ... https://www.cybersecuritydive.com/news/incontroller-pipedream-malware-sabotage-industrial-sites/622130/ Published: 2022 04 14 16:55:16 Received: 2022 04 14 18:21:32 Feed: Google Alert – cybersecurity Source: Google Alert Category: News Topic: Cyber Security |
|
Article: Revealing cyber threats with AI and Exabeam - Tech Wire Asia - published over 2 years ago. Content: Using advanced machine learning to address cyber security problems from a ... A vital part of any organization's cybersecurity arsenal is a SIEM ... https://techwireasia.com/podcast-series/exabeam-ml-ai-threat-detection-antimalware-cybersecurity-podcast-s03-e03/ Published: 2022 04 14 17:09:29 Received: 2022 04 14 18:21:32 Feed: Google Alert – cybersecurity Source: Google Alert Category: News Topic: Cyber Security |
|
Article: Marine Safety Information Bulletin: Cybersecurity Awareness and Action - HS Today - published over 2 years ago. Content: Stakeholders should closely monitor their computer systems, telecommunications systems, and networks for suspicious activity and breaches. https://www.hstoday.us/subject-matter-areas/cybersecurity/marine-safety-information-bulletin-cybersecurity-awareness-and-action/ Published: 2022 04 14 17:18:16 Received: 2022 04 14 18:21:32 Feed: Google Alert – cybersecurity Source: Google Alert Category: News Topic: Cyber Security |
Article: Apple Celebrating Earth Day With $1 Donation for Every Apple Store Purchase Made With Apple Pay - published over 2 years ago. Content: https://www.macrumors.com/2022/04/14/apple-earth-day-donations-apple-pay/ Published: 2022 04 14 18:03:02 Received: 2022 04 14 18:09:54 Feed: MacRumors : Mac News and Rumors Source: MacRumors : Mac News and Rumors Category: News Topic: Cyber Security |
|
Article: Inside a Data Center Outage: Lessons About Resilience - published over 2 years ago. Content: https://www.darkreading.com/dr-tech/case-study-of-a-data-center-outage-building-multidimensional-resilience-in-sase-networks Published: 2022 04 14 18:06:35 Received: 2022 04 14 18:09:45 Feed: Dark Reading: Source: Dark Reading Category: News Topic: Cyber Security |
|
Article: CVE-2022-28345 - Signal client for iOS version 5.33.2 and below are vulnerable to RTLO Injection URI Spoofing using malicious URLs such as gepj.net/selif#/moc.elpmaxe which would appear as example.com/#files/ten.jpeg - published over 2 years ago. Content: submitted by /u/docker-osx [link] [comments] https://www.reddit.com/r/netsec/comments/u3mnsc/cve202228345_signal_client_for_ios_version_5332/ Published: 2022 04 14 17:25:42 Received: 2022 04 14 18:07:05 Feed: /r/netsec - Information Security News and Discussion Source: /r/netsec - Information Security News and Discussion Category: Cyber Security Topic: Cyber Security |
Article: 2962824 - Update Rollup of Revoked Non-Compliant UEFI Modules - Version: 1.1 - published over 10 years ago. Content: Revision Note: V1.1 (June 10, 2014): Advisory revised to announce a detection change for the update rollup (updates 2920189 and 2961908). This is a detection change only. There were no changes to the update files. Customers who have already successfully updated their systems do not need to take any action.Summary: With this advisory, Microsoft is revoking th... https://technet.microsoft.com/en-us/library/security/2962824 Published: 2014 06 10 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2862973 - Update for Deprecation of MD5 Hashing Algorithm for Microsoft Root Certificate Program - Version: 3.0 - published over 10 years ago. Content: Revision Note: V3.0 (June 10, 2014): Revised advisory to rerelease the 2862973 update for Windows 8 and Windows Server 2012. This rerelease only applies to systems running Windows Embedded 8 and Windows Server 2012 for Embedded Systems. See the Advisory FAQ for more information.Summary: Microsoft is announcing the availability of an update for supported edit... https://technet.microsoft.com/en-us/library/security/2862973 Published: 2014 06 10 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2974294 - Vulnerability in Microsoft Malware Protection Engine Could Allow Denial of Service - Version: 1.0 - published over 10 years ago. Content: Revision Note: V1.0 (June 17, 2014): Advisory publishedSummary: Microsoft is releasing this security advisory to inform customers that an update to the Microsoft Malware Protection Engine addresses a security vulnerability that was reported to Microsoft. The vulnerability could allow denial of service if the Microsoft Malware Protection Engine scans a specia... https://technet.microsoft.com/en-us/library/security/2974294 Published: 2014 06 17 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 2982792 - Improperly Issued Digital Certificates Could Allow Spoofing - Version: 2.0 - published over 10 years ago. Content: Revision Note: V2.0 (July 17, 2014): Advisory revised to announce the availability of update 2982792 for supported editions of Windows Server 2003. For more information, see the Suggested Actions section of this advisory.Summary: Microsoft is aware of improperly issued SSL certificates that could be used in attempts to spoof content, perform phishing attacks... https://technet.microsoft.com/en-us/library/security/2982792 Published: 2014 07 17 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2915720 - Changes in Windows Authenticode Signature Verification - Version: 1.4 - published over 10 years ago. Content: Revision Note: V1.4 (July 29, 2014): Revised advisory to announce that Microsoft no longer plans to enforce the stricter verification behavior as a default functionality on supported releases of Microsoft Windows. It remains available as an opt-in feature. See the Advisory FAQ section for more information.Summary: Microsoft is announcing the availability of ... https://technet.microsoft.com/en-us/library/security/2915720 Published: 2014 07 29 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2905247 - Insecure ASP.NET Site Configuration Could Allow Elevation of Privilege - Version: 2.0 - published about 10 years ago. Content: Revision Note: V2.0 (September 9, 2014): Advisory rereleased to announce the offering of the security update via Microsoft Update, in addition to the Download-Center-only option that was provided when this advisory was originally released.Summary: Microsoft is announcing the availability of an update for Microsoft ASP.NET to address a vulnerability in ASP.NE... https://technet.microsoft.com/en-us/library/security/2905247 Published: 2014 09 09 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 2977292 - Update for Microsoft EAP Implementation that Enables the Use of TLS - Version: 1.0 - published about 10 years ago. Content: Revision Note: V1.0 (October 14, 2014): Advisory published.Summary: Microsoft is announcing the availability of an update for supported editions of Windows 7, Windows Server 2008 R2, Windows 8, Windows 8.1, Windows Server 2012, and Windows RT for the Microsoft Extensible Authentication Protocol (EAP) implementation that enables the use of Transport Layer Sec... https://technet.microsoft.com/en-us/library/security/2977292 Published: 2014 10 14 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2949927 - Availability of SHA-2 Hashing Algorithm for Windows 7 and Windows Server 2008 R2 - Version: 2.0 - published about 10 years ago. Content: Revision Note: V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.Summary: Microsoft is announcing the a... https://technet.microsoft.com/en-us/library/security/2949927 Published: 2014 10 17 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3010060 - Vulnerability in Microsoft OLE Could Allow Remote Code Execution - Version: 2.0 - published almost 10 years ago. Content: Revision Note: V2.0 (November 11, 2014): Advisory updated to reflect publication of security bulletin.Summary: Microsoft has completed the investigation into a public report of a vulnerability. We have issued Microsoft Security Bulletin MS14-064 to address this issue. For more information about this issue, including download links for an available security u... https://technet.microsoft.com/en-us/library/security/3010060 Published: 2014 11 11 18:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 3004375 - Update for Windows Command Line Auditing - Version: 1.0 - published over 9 years ago. Content: Revision Note: V1.0 (February 10, 2015): Advisory published.Summary: Microsoft is announcing the availability of an update for supported editions of Windows 7, Windows 8, Windows Server 2008R2 and Windows Server 2012 that expands the Audit Process Creation policy to include the command information passed to every process. This is a new feature that provides ... https://technet.microsoft.com/en-us/library/security/3004375 Published: 2015 02 10 18:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3033929 - Availability of SHA-2 Code Signing Support for Windows 7 and Windows Server 2008 R2 - Version: 1.0 - published over 9 years ago. Content: Revision Note: V1.0 (March 10, 2015): Advisory published.Summary: Microsoft is announcing the reissuance of an update for all supported editions of Windows 7 and Windows Server 2008 R2 to add support for SHA-2 signing and verification functionality. This update supersedes the 2949927 update that was rescinded on October 17, 2014 to address issues that some c... https://technet.microsoft.com/en-us/library/security/3033929 Published: 2015 03 10 17:00:00 Received: 2022 04 14 18:03:38 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3046015 - Vulnerability in Schannel Could Allow Security Feature Bypass - Version: 2.0 - published over 9 years ago. Content: Severity Rating: ImportantRevision Note: V2.0 (March 10, 2015): Advisory updated to reflect publication of security bulletin.Summary: Microsoft has completed the investigation into a public report of a vulnerability. We have issued Microsoft Security Bulletin MS15-031 to address this issue. For more information about this issue, including download links for ... https://technet.microsoft.com/en-us/library/security/3046015 Published: 2015 03 10 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 3046310 - Improperly Issued Digital Certificates Could Allow Spoofing - Version: 2.0 - published over 9 years ago. Content: Revision Note: V2.0 (March 19, 2015): Advisory rereleased to announce that the update for supported editions of Windows Server 2003 is now available. See Knowledge Base Article 3046310 for more information and download links.Summary: Microsoft is aware of an improperly issued SSL certificate for the domain “live.fi” that could be used in attempts to spoof co... https://technet.microsoft.com/en-us/library/security/3046310 Published: 2015 03 19 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3050995 - Improperly Issued Digital Certificates Could Allow Spoofing - Version: 2.0 - published over 9 years ago. Content: Revision Note: V2.0 (March 26, 2015): Advisory rereleased to announce that the update for supported editions of Windows Server 2003 is now available. See Microsoft Knowledge Base Article 3050995 for more information and download links.Summary: Microsoft is aware of improperly issued digital certificates coming from the subordinate CA, MCS Holdings, which cou... https://technet.microsoft.com/en-us/library/security/3050995 Published: 2015 03 26 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3009008 - Vulnerability in SSL 3.0 Could Allow Information Disclosure - Version: 3.0 - published over 9 years ago. Content: Revision Note: V3.0 (April 14, 2015): Revised advisory to announce with the release of security update 3038314 on April 14, 2015 SSL 3.0 is disabled by default in Internet Explorer 11, and to add instructions for how to undo the workarounds.Summary: Microsoft is aware of detailed information that has been published describing a new method to exploit a vulner... https://technet.microsoft.com/en-us/library/security/3009008 Published: 2015 04 14 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 3045755 - Update to Improve PKU2U Authentication - Version: 1.0 - published over 9 years ago. Content: Revision Note: V1.0 (April 14, 2015): Advisory published.Summary: Microsoft is announcing the availability of a defense-in-depth update that improves the authentication used by the Public Key Cryptography User-to-User (PKU2U) security support provider (SSP) in Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1. The improvement is part of ongoing efforts... https://technet.microsoft.com/en-us/library/security/3045755 Published: 2015 04 14 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3062591 - Local Administrator Password Solution (LAPS) Now Available - Version: 1.0 - published over 9 years ago. Content: Revision Note: V1.0 (May 1, 2015): V1.0 (May 1, 2015): Advisory published.Summary: Microsoft is offering the Local Administrator Password Solution (LAPS) that provides a solution to the issue of using a common local account with an identical password on every computer in a domain. LAPS resolves this issue by setting a different, random password for the commo... https://technet.microsoft.com/en-us/library/security/3062591 Published: 2015 05 01 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2962393 - Update for Vulnerability in Juniper Networks Windows In-Box Junos Pulse Client - Version: 2.0 - published over 9 years ago. Content: Revision Note: V2.0 (June 9, 2015): Added the 3062760 update to the Juniper VPN Client Update section.Summary: Microsoft is announcing the availability of an update for the Juniper Networks Windows In-Box Junos Pulse Client for Windows 8.1 and Windows RT 8.1. The update addresses a vulnerability in the Juniper VPN client by updating the affected Juniper VPN ... https://technet.microsoft.com/en-us/library/security/2962393 Published: 2015 06 09 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 3074162 - Vulnerability in Microsoft Malicious Software Removal Tool Could Allow Elevation of Privilege - Version: 1.0 - published over 9 years ago. Content: Severity Rating: ImportantRevision Note: V1.0 (July 14, 2015): Advisory publishedSummary: Microsoft is releasing this security advisory to inform customers that an update to the Microsoft Malicious Software Removal Tool (MSRT) is available that addresses a security vulnerability that was reported to Microsoft. The vulnerability could allow elevation of privi... https://technet.microsoft.com/en-us/library/security/3074162 Published: 2015 07 14 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3083992 - Update to Improve AppLocker Publisher Rule Enforcement - Version: 1.0 - published about 9 years ago. Content: Revision Note: V1.0 (September 8, 2015): Summary: Microsoft is announcing the availability of a defense-in-depth update that improves the enforcement of publisher rules by Windows AppLocker in Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows 8.1, and Windows Server 2012 R2. The improvement is part of ongoing efforts to bolster the e... https://technet.microsoft.com/en-us/library/security/3083992 Published: 2015 09 08 17:00:00 Received: 2022 04 14 18:03:37 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 2960358 - Update for Disabling RC4 in .NET TLS - Version: 2.0 - published about 9 years ago. Content: Revision Note: V2.0 (October 13, 2015): Advisory revised to broaden the affected software list to include Windows 10 systems that are running .NET Framework 3.5 applications and systems with .NET Framework 4.6 installed that are running .NET Framework 4.5/4.5.1/4.5.2 applications, and to provide customers running these configurations with steps for manually ... https://technet.microsoft.com/en-us/library/security/2960358 Published: 2015 10 13 17:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 3097966 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 2.0 - published about 9 years ago. Content: Revision Note: V2.0 (October 13, 2015): Advisory revised to notify customers that an update is available that modifies the Code Integrity component in Windows to extend trust removal for the four digital certificates addressed by this advisory to also preclude kernel-mode code signing.Summary: Microsoft is aware of four digital certificates that were inadver... https://technet.microsoft.com/en-us/library/security/3097966 Published: 2015 10 13 17:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3042058 - Update to Default Cipher Suite Priority Order - Version: 1.1 - published about 9 years ago. Content: Revision Note: V1.1 (October 13, 2015): Advisory revised to announce that the Default Cipher Suite Prioritization update (3042058), originally released May 12, 2015 via the Microsoft Download Center (DLC) only, is now also available via Microsoft Update (MU) and Windows Server Update Services (WSUS). This is an update offering venue change only. There were n... https://technet.microsoft.com/en-us/library/security/3042058 Published: 2015 10 13 17:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3108638 - Update for Windows Hyper-V to Address CPU Weakness - Version: 1.0 - published almost 9 years ago. Content: Revision Note: V1.0 (November 10, 2015): Advisory published.Summary: Microsoft is announcing the availability of a security update for Windows Hyper-V to protect against a denial of service condition that can be triggered with certain central processing unit (CPU) chipsets. Although the weakness resides in the chipset, Microsoft is issuing this security upda... https://technet.microsoft.com/en-us/library/security/3108638 Published: 2015 11 10 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 3119884 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 1.0 - published almost 9 years ago. Content: Revision Note: V1.0 (November 30, 2015): Advisory published.Summary: Microsoft is aware of unconstrained digital certificates from Dell Inc. for which the private keys were inadvertently disclosed. One of these unconstrained certificates could be used to issue other certificates, impersonate other domains, or sign code. In addition, these certificates could ... https://technet.microsoft.com/en-us/library/security/3119884 Published: 2015 11 30 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3123040 - Inadvertently Disclosed Digital Certificate Could Allow Spoofing - Version: 1.0 - published almost 9 years ago. Content: Revision Note: V1.0 (December 8, 2015): Advisory published.Summary: Microsoft is aware of an SSL/TLS digital certificate for *.xboxlive.com for which the private keys were inadvertently disclosed. The certificate could be used in attempts to perform man-in-the-middle attacks. It cannot be used to issue other certificates, impersonate other domains, or sign c... https://technet.microsoft.com/en-us/library/security/3123040 Published: 2015 12 08 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3057154 - Update to Harden Use of DES Encryption - Version: 1.1 - published almost 9 years ago. Content: Revision Note: V1.1 (December 8, 2015): Advisory updated to include more information about disabling DES by default in Windows 7 and Windows Server 2008 R2 and later operating systems. The update allows DES to be used between client and server to address scenarios in which DES is still required for application compatibility reasons.Summary: Microsoft is anno... https://technet.microsoft.com/en-us/library/security/3057154 Published: 2015 12 08 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 2755801 - Update for Vulnerabilities in Adobe Flash Player in Internet Explorer and Microsoft Edge - Version: 53.0 - published almost 9 years ago. Content: Revision Note: V53.0 (January 5, 2016): Added the 3133431 update to the Current Update section.Summary: Microsoft is announcing the availability of an update for Adobe Flash Player in Internet Explorer on all supported editions of Windows 8, Windows Server 2012, Windows RT, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10; the update is al... https://technet.microsoft.com/en-us/library/security/2755801 Published: 2016 01 05 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3109853 - Update to Improve TLS Session Resumption Interoperability - Version: 1.0 - published almost 9 years ago. Content: Revision Note: V1.0 (January 12, 2016): Advisory published.Summary: Microsoft is announcing the availability of an update to improve interoperability between Schannel-based TLS clients and 3rd-party TLS servers that enable RFC5077-based resumption and that send the NewSessionTicket message in the abbreviated TLS handshake. The update addresses an issue in sc... https://technet.microsoft.com/en-us/library/security/3109853 Published: 2016 01 12 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3118753 - Updates for ActiveX Kill Bits 3118753 - Version: 1.0 - published almost 9 years ago. Content: Revision Note: V1.0 (January 12, 2016): Advisory published.Summary: Microsoft is releasing a new set of ActiveX kill bits with this advisory. These ActiveX kill bits are included in the Internet Explorer cumulative update released on January 12, 2016. https://technet.microsoft.com/en-us/library/security/3118753 Published: 2016 01 12 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
Article: 2871997 - Update to Improve Credentials Protection and Management - Version: 5.0 - published over 8 years ago. Content: Revision Note: V5.0 (February 9, 2016): Rereleased advisory to announce the release of update 3126593 to enable the Restricted Admin mode for Credential Security Support Provider (CredSSP) by default. See Updates Related to this Advisory for details.Summary: Microsoft is announcing the availability of updates for supported editions of Windows 7, Windows Serv... https://technet.microsoft.com/en-us/library/security/2871997 Published: 2016 02 09 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Article: 3137909 - Vulnerabilities in ASP.NET Templates Could Allow Tampering - Version: 1.1 - published over 8 years ago. Content: Revision Note: V1.1 (February 10, 2016): Advisory updated to include download information for Microsoft ASP.NET Web Frameworks, and Tools and Microsoft ASP.NET and Web Tools. This is an informational change only.Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in the public versions of Visual Studio 2013, Vi... https://technet.microsoft.com/en-us/library/security/3137909 Published: 2016 02 10 18:00:00 Received: 2022 04 14 18:03:36 Feed: Latest Security Advisories Source: Latest Security Advisories Category: Alerts Topic: Vulnerabilities |
|
Click to Open Code Editor