Lucene search
K

6 matches found

HackRead
HackRead
added 2022/06/01 4:4 p.m.13 views

Unofficial Micropatch for Follina Released as Chinese Hackers Exploit the 0-day

By Waqas The Follina vulnerability was originally discovered after a malicious Microsoft Word document was uploaded on VirusTotal from a… This is a post from HackRead.com Read the original post: Unofficial Micropatch for Follina Released as Chinese Hackers Exploit the 0-day...

2.5AI score
Exploits0
ThreatPost
ThreatPost
added 2021/11/29 5:47 p.m.124 views

Unpatched Windows 10 Zero-Day Allows Privileged File Access

An unpatched Windows security vulnerability could allow information disclosure and local privilege escalation LPE, researchers have warned. The issue CVE-2021-24084 has yet to get an official fix, making it a zero-day bug – but a micropatch has been rolled out as a stop-gap measure. Security...

7.8CVSS7AI score0.67252EPSS
Exploits11References8
ThreatPost
ThreatPost
added 2021/11/12 7:49 p.m.101 views

Windows 10 Privilege-Escalation Zero-Day Gets Unofficial Fix

A partially unpatched security bug in Windows that could allow local privilege escalation from a regular user to System remains unaddressed fully by Microsoft – but an unofficial micropatch from oPatch has hit the scene. The bug CVE-2021-34484 was originally disclosed and patched as part of...

7.8CVSS7.3AI score0.14393EPSS
Exploits2References7
ThreatPost
ThreatPost
added 2019/06/07 3:27 p.m.487 views

SandboxEscaper Debuts ByeBear Windows Patch Bypass

Guerrilla developer SandboxEscaper has disclosed a second bypass exploit for a patch that fixes a Windows local privilege-escalation LPE flaw — again without notifying Microsoft. The exploit, dubbed “ByeBear,” enables attackers to get past the patch to attack a permissions-overwrite,...

7.2CVSS7.1AI score0.414EPSS
Exploits20References17
ThreatPost
ThreatPost
added 2019/02/11 7:20 p.m.168 views

Temporary Patch Released For Adobe Reader Zero-Day

A temporary patch has been released to address a zero-day vulnerability in Adobe Reader that could enable bad actors to steal victims’ hashed password values, known as “NTLM hashes.” 0patch on Monday released a micropatch for the flaw, found in Adobe Reader DC. The vulnerability, which has no...

5CVSS8.4AI score0.86898EPSS
Exploits2References9
ThreatPost
ThreatPost
added 2018/10/12 5:1 p.m.106 views

Microsoft Zero-Day Patch for JET Bug Incomplete, Claims Firm

UPDATE Microsoft patched a zero-day in its JET Database Engine this week – but the patch was incomplete, according to researchers at 0patch. The company has developed a micropatch that corrects that hole, it said Friday. The memory corruption vulnerability CVE-2018-8423 could allow remote...

9.3CVSS7.9AI score0.32705EPSS
Exploits2References4
Rows per page
Query Builder