4 matches found
Zero-day vulnerability in Windows terminal management tool gets a hotfix
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Microsoft Endpoint Configuration Manager MECM has a spoofing vulnerability that allows remote attackers to access sensitive data. The zero-day vulnerability has been identified as CVE-2022-37972...
Microsoft Releases Out-of-Band Security Update for Microsoft Endpoint Configuration Manager
Microsoft has released a security update to address a vulnerability in Microsoft Endpoint Configuration Manager, versions 2103-2207. An attacker could exploit this vulnerability to obtain sensitive information. The Cybersecurity and Infrastructure Security Agency CISA encourages users and...
CVE-2022-37972
CVE-2022-37972 is a vulnerability in Microsoft Endpoint Configuration Manager (MECM) that allows spoofing via network access. The NVD/MSRC entry describes a high-severity issue (CVSSv3.1: 7.5) with network attack vector and no user interaction, causing potential metadata/data spoofing through NTL...
CVE-2022-37972 Microsoft Endpoint Configuration Manager Spoofing Vulnerability
...