Lucene search
K

978 matches found

Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.8 views

PT-2026-7483

Heads up, folks: Microsoft's February 2026 Patch Tuesday is out, dropping 55 vulnerability fixes across various products. Among these is CVE-2025-59498, which Microsoft has explicitly marked as Critical. This update is significant, addressing a broad spectrum of security issues. While the specifi...

5.5AI score
Exploits0References1
Talos Blog
Talos Blog
added 2026/02/10 11:54 p.m.10 views

Microsoft Patch Tuesday for February 2026 — Snort rules and prominent vulnerabilities

Microsoft has released its monthly security update for February 2026, which includes 59 vulnerabilities affecting a range of products, including two that Microsoft marked as "Critical". CVE-2026-21522 is a critical elevation of privilege vulnerability affecting Microsoft ACI Confidential...

8.8CVSS6.8AI score0.25835EPSS
Exploits18
Krebs on Security
Krebs on Security
added 2026/02/10 9:49 p.m.11 views

Patch Tuesday, February 2026 Edition

Microsoft today released updates to fix more than 50 security holes in its Windows operating systems and other software, including patches for a whopping six "zero-day" vulnerabilities that attackers are already exploiting in the wild. Zero-day 1 this month is CVE-2026-21510, a security feature...

8.8CVSS6.6AI score0.72152EPSS
Exploits20
Qualys Blog
Qualys Blog
added 2026/02/10 8:51 p.m.17 views

Microsoft and Adobe Patch Tuesday, February 2026 Security Update Review

Microsoft's February 2026 Patch Tuesday focuses on closing security gaps that attackers could exploit, reinforcing the importance of timely patching in enterprise environments. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for February 2026 This month's release...

9.8CVSS7.5AI score0.25835EPSS
Exploits12
Information Security Automation
Information Security Automation
added 2026/01/24 9:40 a.m.9 views

About Information Disclosure – Desktop Window Manager (CVE-2026-20805) vulnerability

About Information Disclosure - Desktop Window Manager CVE-2026-20805 vulnerability. Desktop Window Manager is a compositing window manager that has been part of Windows since Windows Vista. Exploitation of the vulnerability, which was addressed in the January Microsoft Patch Tuesday, allows a loc...

5.5CVSS6.1AI score0.05028EPSS
Exploits5
HackRead
HackRead
added 2026/01/14 1:31 p.m.8 views

Microsoft January 2026 Patch Tuesday: 115 Vulnerabilities Fixed

Microsoft kicks off 2026 with 115 security updates, including a fix for an actively exploited zero-day. Protect your Windows and Office systems today...

6.9AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2026/01/14 5:13 a.m.18 views

Patch Tuesday - January 2026

Microsoft is publishing 114 vulnerabilities this January 2026 Patch Tuesday. Today’s menu includes just one vulnerability marked as exploited in the wild, as well as two vulnerabilities where Microsoft is aware of public disclosure. There are no critical remote code execution or elevation of...

7.8CVSS8.7AI score0.17312EPSS
Exploits6
Krebs on Security
Krebs on Security
added 2026/01/14 12:47 a.m.8 views

Patch Tuesday, January 2026 Edition

Microsoft today issued patches to plug at least 113 security holes in its various Windows operating systems and supported software. Eight of the vulnerabilities earned Microsoft's most-dire "critical" rating, and the company warns that attackers are already exploiting one of the bugs fixed today...

9.8CVSS9.4AI score0.10561EPSS
Exploits8
Positive Technologies
Positive Technologies
added 2026/01/14 12:0 a.m.10 views

PT-2026-2856

Name of the Vulnerable Software and Affected Versions Substance3D - Stager versions 3.1.6 and earlier Description A flaw exists in Substance3D - Stager that involves an out-of-bounds read when processing a specially crafted file. This could allow an attacker to read beyond the boundaries of...

7.8CVSS5.9AI score0.00157EPSS
Exploits0References4
Qualys Blog
Qualys Blog
added 2026/01/13 9:34 p.m.13 views

Microsoft and Adobe Patch Tuesday, January 2026 Security Update Review

Starting the year on a security-first note, Microsoft's January 2026 Patch Tuesday resolves several vulnerabilities that could impact enterprise environments. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for January 2026 This month's release addresses 115...

8.8CVSS8.9AI score0.2943EPSS
Exploits7
Talos Blog
Talos Blog
added 2026/01/13 6:29 p.m.8 views

Microsoft Patch Tuesday for January 2026 — Snort rules and prominent vulnerabilities

Microsoft has released its monthly security update for January 2026, which includes 112 vulnerabilities affecting a range of products, including 8 that Microsoft marked as "critical". In this month's release, Microsoft observed one of the included "important" vulnerabilities, CVE-2026-20805, as...

8.4CVSS8.3AI score0.07983EPSS
Exploits5
The Hacker News
The Hacker News
added 2026/01/09 9:11 a.m.11 views

CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday said it's retiring 10 emergency directives Eds that were issued between 2019 and 2024. The list of the directives now considered closed is as follows - ED 19-01: Mitigate DNS Infrastructure Tampering ED 20-02: Mitigate...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/12/15 8:3 a.m.7 views

A week in security (December 8 – December 14)

Last week on Malwarebytes Labs: The US digital doxxing of H-1B applicants is a massive privacy misstep Google ads funnel Mac users to poisoned AI chats that spread the AMOS infostealer How private is your VPN? DroidLock malware locks you out of your Android device and demands ransom Malwarebytes...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/12/10 4:6 p.m.17 views

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

These updates from Microsoft fix serious security issues, including three that attackers are already exploiting to take control of Windows systems. In total, the security update resolves 57 Microsoft security vulnerabilities. Microsoft isn't releasing new features for Windows 10 anymore, so Windo...

8.4CVSS8.4AI score0.02383EPSS
Exploits7
Rapid7 Blog
Rapid7 Blog
added 2025/12/10 7:50 a.m.22 views

Patch Tuesday - December 2025

Microsoft is publishing a relatively light 54 new vulnerabilities this December 2025 Patch Tuesday, which is significantly lower than we have come to expect over the past couple of years. Today’s list includes two publicly disclosed remote code vulnerabilities, and a single exploited-in-the-wild...

8.8CVSS8.8AI score0.02383EPSS
Exploits7
Talos Blog
Talos Blog
added 2025/12/09 11:29 p.m.15 views

Microsoft Patch Tuesday for December 2025 — Snort rules and prominent vulnerabilities

The Patch Tuesday for December of 2025 includes 57 vulnerabilities, including two that Microsoft marked as "critical." The remaining vulnerabilities listed are classified as "important." Microsoft assessed that exploitation of the two "critical" vulnerabilities is "less likely." CVE ‑2025‑62562 i...

8.8CVSS8.6AI score0.02383EPSS
Exploits2
Krebs on Security
Krebs on Security
added 2025/12/09 11:18 p.m.17 views

Microsoft Patch Tuesday, December 2025 Edition

Microsoft today pushed updates to fix at least 56 security flaws in its Windows operating systems and supported software. This final Patch Tuesday of 2025 tackles one zero-day bug that is already being exploited, as well as two publicly disclosed vulnerabilities. Despite releasing a...

8.4CVSS8.6AI score0.02383EPSS
Exploits7
Qualys Blog
Qualys Blog
added 2025/12/09 7:59 p.m.19 views

Microsoft and Adobe Patch Tuesday, December 2025 Security Update Review

As the year winds down, Microsoft Patch Tuesday in December arrives with essential fixes and enhancements to close vulnerabilities and boost performance. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for December 2025 This month's release addresses 72 vulnerabilities,...

8.4CVSS9.4AI score0.02383EPSS
Exploits7
The Hacker News
The Hacker News
added 2025/12/03 5:46 p.m.8 views

Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation

Microsoft has silently plugged a security flaw that has been exploited by several threat actors since 2017 as part of the company's November 2025 Patch Tuesday updates, according to ACROS Security's 0patch. The vulnerability in question is CVE-2025-9491 CVSS score: 7.8/7.0, which has been describ...

7.8CVSS7.5AI score0.63102EPSS
Exploits3
Krebs on Security
Krebs on Security
added 2025/11/16 9:47 p.m.15 views

Microsoft Patch Tuesday, November 2025 Edition

Microsoft this week pushed security updates to fix more than 60 vulnerabilities in its Windows operating systems and supported software, including at least one zero-day bug that is already being exploited. Microsoft also fixed a glitch that prevented some Windows 10 users from taking advantage of...

7.8CVSS7AI score0.06073EPSS
Exploits6
Rows per page
Query Builder