133 matches found
KB5041573: Windows Server version 23H2 Security Update (August 2024)
The remote Windows host is missing security update 5041573. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
CVE-2024-21302
Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this...
CVE-2024-21302
Microsoft has fixed CVE-2024-21302 for Windows systems with Virtualization-Based Security (VBS). The elevation-of-privilege vulnerability allowed an administrator to replace current Windows system files with older versions, potentially reintroducing mitigated VBS vulnerabilities and exfiltrating ...
Windows Update Stack Elevation of Privilege Vulnerability
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security VBS. However, an...
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Summary: As of July 10, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this...
PT-2024-5720 · Microsoft · Windows 11 +4
Name of the Vulnerable Software and Affected Versions: Windows versions prior to the April 2025 security updates Windows 10 versions prior to the April 2025 security updates Windows 11 versions prior to the April 2025 security updates Windows Server 2016 and higher versions prior to the April 202...
PT-2024-5719 · Microsoft · Windows Update
Name of the Vulnerable Software and Affected Versions: Windows Update affected versions not specified Description: The issue is related to insufficient access control in Windows Update, potentially allowing an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities...
Microsoft Windows 安全漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows that stems from the presence of an elevation of privilege vulnerability that could allow an attacker with basic user privileges to...
[SECURITY] Fedora 39 Update: libkrun-1.7.2-4.fc39
Dynamic library providing Virtualization-based process isolation capabilities...
Fedora: Security Advisory for libkrun (FEDORA-2024-04877592b7)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for libkrun (FEDORA-2023-c19aaa2283)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: libkrun-1.5.0-6.fc38
Dynamic library providing Virtualization-based process isolation capabilities...
New security features in Windows 11 protect users and empower IT
While attacks are getting more sophisticated, so are our defenses. With recent innovations like secured-core PCs that are 60 percent more resilient to malware than non-secured-core PCs,1 and the Microsoft Pluton Security Processor that adds more protection by isolating sensitive data like...
Fedora: Security Advisory for libkrun (FEDORA-2023-cc21019773)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: libkrun-1.5.0-2.fc38
Dynamic library providing Virtualization-based process isolation capabilities...
New Surface PCs enable virtualization-based security (VBS) by default to empower customers to do more, securely
VBS and HVCI-enabled devices help protect from advanced attacks Escalation of privilege attacks are a malicious actor’s best friend, and they often target sensitive information stored in memory. These kinds of attacks can turn a minor user mode compromise into a full compromise of your OS and...
SureBackup for VM With VBS Enabled Fails With “Invalid change tracker error code”
Challenge A SureBackup job testing a VMware VM that has Virtualization-Based Security VBS enabled fails with the error: An error occurred while taking a snapshot: Invalid change tracker error code. An error occurred while taking a snapshot: Invalid change tracker error code. Cause This error occu...
Introducing Kernel Data Protection, a new platform security technology for preventing data corruption
Attackers, confronted by security technologies that prevent memory corruption, like Code Integrity CI and Control Flow Guard CFG, are expectedly shifting their techniques towards data corruption. Attackers use data corruption techniques to target system security policy, escalate privileges, tampe...
SYS.1.2.2.A8
Ziel des Bausteins SYS.1.2.2 ist die Absicherung von Microsoft Windows Server 2012 und Microsoft Windows Server 2012 R2. Die Standard-Anforderung Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify...
Microsoft Windows: Turn On Virtualization Based Security (Select Platform Security Level)
Specifies whether Virtualization Based Security is enabled. Virtualization Based Security uses the Windows Hypervisor to provide support for security services. Virtualization Based Security requires Secure Boot, and can optionally be enabled with the use of DMA Protections. DMA protections requir...