22 matches found
MAL-2025-17329 Malicious code in com.microsoft.mixedreality.movingplatform (npm)
The package com.microsoft.mixedreality.movingplatform was found to contain malicious code...
MAL-2025-17331 Malicious code in com.microsoft.mixedreality.powerthermalnotification (npm)
The package com.microsoft.mixedreality.powerthermalnotification was found to contain malicious code...
Malicious code in com.microsoft.mixedreality.openxr (npm)
The package com.microsoft.mixedreality.openxr was found to contain malicious code...
Malicious code in com.microsoft.mixedreality.powerthermalnotification (npm)
The package com.microsoft.mixedreality.powerthermalnotification was found to contain malicious code...
Malicious code in com.microsoft.mixedreality.webrtc.samples (npm)
The package com.microsoft.mixedreality.webrtc.samples was found to contain malicious code...
FacialMotionID: Identifying Users of Mixed Reality Headsets Using Abstract Facial Motion Representations
Facial motion capture in mixed reality headsets enables real-time avatar animation, allowing users to convey non-verbal cues during virtual interactions. However, as facial motion data constitutes a behavioral biometric, its use raises novel privacy concerns. With mixed reality systems becoming...
Denial of service
Windows Mixed Reality Developer Tools Denial of Service Vulnerability...
CVE-2023-36720
CVE-2023-36720 is a DoS vulnerability in Windows Mixed Reality Developer Tools with a CVSS v3.1 base score of 7.5 (HIGH). It requires network access, has no user interaction, and does not require privileges, with the impact limited to availability (I/N; A=HIGH). The available sources identify the...
CVE-2023-36720 Windows Mixed Reality Developer Tools Denial of Service Vulnerability
...
CVE-2022-37974
Windows Mixed Reality Developer Tools Information Disclosure Vulnerability...
Windows Mixed Reality Developer Tools Information Disclosure Vulnerability
...
CVE-2022-37974
CVE-2022-37974 is an information-disclosure vulnerability in Windows Mixed Reality Developer Tools. The advisory entries in the connected set identify the affected component as Windows Mixed Reality Developer Tools and classify the impact as information disclosure, with CVSSv3.1 a base score of 6...
MAL-2022-1355 Malicious code in azure-mixed-reality-authentication (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae2aac29e816c1c521ba84df550cef1414e18cc902667358cb2abee034adc0b4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2044 Malicious code in com.microsoft.mixedreality.toolkit.tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 010387da024ddb830436616463c0c0210bd24c8cbf1b4345f4e22e63d460806b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4640 Malicious code in mixed-reality-remote-rendering (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99f83ba8e96b73186a39a08cb80f7d2478ee60c69bd6aab62ac755f803f5db62 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mixed-reality-remote-rendering (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99f83ba8e96b73186a39a08cb80f7d2478ee60c69bd6aab62ac755f803f5db62 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1260 Malicious code in azure-arm-mixedreality-samples-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d667fb34d58a638aa2c1ecd67d257d4b9759127f40fa58d34ebb8b4c672d3ee9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in azure-arm-mixedreality-samples-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d667fb34d58a638aa2c1ecd67d257d4b9759127f40fa58d34ebb8b4c672d3ee9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
February 27, 2020—KB4535996 (OS Builds 18362.693 and 18363.693)
February 27, 2020—KB4535996 OS Builds 18362.693 and 18363.693 What's new for Windows 10, version 1909 and Windows 10, version 1903 release notes Windows 10, versions 1903 and 1909 share a common core operating system and an identical set of system files. As a result, the new features in Windows 1...
October 1, 2020—KB4577063 (OS Build 19041.546) Preview
October 1, 2020—KB4577063 OS Build 19041.546 Preview IMPORTANT Starting in July 2020, we will resume non-security releases for Windows 10 and Windows Server, version 1809 and later. There is no change to the cumulative monthly security updates also referred to as the "B" release or Update Tuesday...