3366 matches found
Description of the security update for SharePoint Server 2019: April 8, 2025 (KB5002691)
Description of the security update for SharePoint Server 2019: April 8, 2025 KB5002691 Summary This security update resolves a Microsoft SharePoint remote code execution vulnerability, Microsoft Office remote code execution vulnerability, and Microsoft Word remote code execution vulnerability. To...
Description of the security update for Office 2016: April 8, 2025 (KB5002703)
Description of the security update for Office 2016: April 8, 2025 KB5002703 Summary This security update resolves a Microsoft Office remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-26642. Note: To apply this...
Description of the security update for Office 2016: April 8, 2025 (KB5002669)
Description of the security update for Office 2016: April 8, 2025 KB5002669 Summary This security update resolves a Microsoft Office elevation of privilege vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-27744. Note: To apply this...
End of support for Office 2016 and Office 2019
None None...
Description of the security update for Office 2016: April 8, 2025 (KB5002573)
Description of the security update for Office 2016: April 8, 2025 KB5002573 Summary This security update resolves a Microsoft Word security feature bypass vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-29816. Note: To apply this...
Description of the security update for Office 2016: April 8, 2025 (KB5002588)
Description of the security update for Office 2016: April 8, 2025 KB5002588 Summary This security update resolves a Microsoft Office remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-26642. Note: To apply this...
Description of the security update for OneNote 2016: April 8, 2025 (KB5002622)
Description of the security update for OneNote 2016: April 8, 2025 KB5002622 Summary This security update resolves a Microsoft OneNote security feature bypass vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-29822. Note: To apply th...
Description of the security update for Office Online Server: April 8, 2025 (KB5002699)
Description of the security update for Office Online Server: April 8, 2025 KB5002699 Summary This security update resolves a Microsoft Excel remote code execution vulnerability and Microsoft Office remote code execution vulnerability. To learn more about the vulnerabilities, see the following...
Description of the security update for Excel 2016: April 8, 2025 (KB5002704)
Description of the security update for Excel 2016: April 8, 2025 KB5002704 Summary This security update resolves a Microsoft Excel remote code execution vulnerability and Microsoft Office remote code execution vulnerability. To learn more about the vulnerabilities, see the following security...
KB5056457: Servicing stack update for Windows Server 2008 SP2: April 8, 2025
KB5056457: Servicing stack update for Windows Server 2008 SP2: April 8, 2025 End of support information Support for Windows Server 2008 has ended Windows Server 2008 Premium Assurance ended on January 13, 2026.Windows Server 2008 Extended Security Updates ESU ended on January 10, 2023...
KB5055667: Servicing stack update for Windows Server 2012: April 8, 2025
KB5055667: Servicing stack update for Windows Server 2012: April 8, 2025 End of support information Support for Windows Server 2012 will end in October 2026 Windows Server 2012 reached the end of support EOS on October 10, 2023. Extended Security Updates ESUs are available for purchase and will...
Steps to TruRisk™ – 2: Measuring the Likelihood of Vulnerability Exploitation
Cybersecurity programs rely on various methods to measure the risk associated with vulnerabilities for prioritization, such as CVSS, EPSS, CISA KEV, or even internally developed systems that combine multiple approaches. While these methods help assess whether a specific vulnerability exists on an...
Exploit for Use After Free in Linux Linux_Kernel
CVE-2024-0582 Exploit PoC This repository provides a Proof-...
CVE-2025-30370
A flaw was found in jupyterlab-git. On many platforms, a third party can create a Git repository under a name that includes a shell command substitution string in the syntax $. These directory names are allowed in macOS and a majority of Linux distributions. If a user starts jupyter-lab in a pare...
QR codes sent in attachments are the new favorite for phishers
Recently we’ve been seeing quite a few phishing campaigns using QR codes in email attachments. The lure and the targets are varied, but the use of a QR code to get someone to visit the phishing site is fast becoming a preferred method for cybercriminals. There are several reasons why cybercrimina...
Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices
Counterfeit versions of popular smartphone models that are sold at reduced prices have been found to be preloaded with a modified version of an Android malware called Triada. "More than 2,600 users in different countries have encountered the new version of Triada, the majority in Russia," Kaspers...
How to Recover Deleted Photos from an iPhone
Accidentally deleted some photos from your iPhone? You’re definitely not alone; most iPhone users have done it at…...
Cell Phone OPSEC for Border Crossings
I have heard stories of more aggressive interrogation of electronic devices at US border crossings. I know a lot about securing computers, but very little about securing phones. Are there easy ways to delete data--files, photos, etc.--on phones so it can't be recovered? Does resetting a phone to...
PT-2025-14375 · Zabbix +3 · Zabbix +3
Name of the Vulnerable Software and Affected Versions: Zabbix affected versions not specified Description: A low privilege Zabbix user with API access can use a SQL injection vulnerability in include/classes/api/CApiService.php to execute arbitrary SQL commands via the groupBy parameter...
CVE-2024-45355
A unauthorized access vulnerability exists in the Xiaomi phone framework. The vulnerability is caused by improper validation and can be exploited by attackers to Access sensitive methods...