PT-2026-32286

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Cortex XDR agent on Windows affected versions not specified Description A flaw in the protection mechanism of the agent allows a local Windows administrator to disable the software. This bypass of system configuration or...

EUVD-2025-203807

When using the attachment interaction functionality, Canary Mail 5.1.40 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...

CVE-2025-65318

CVE-2025-65318 : Red Hat and NVD/NVD-derived records describe a vulnerability in Canary Mail 5.1.40 and earlier where saving documents via the attachment interaction leads to files being written to the filesystem without a Mark-of-the-Web tag. This tag omission can bypass built-in file protection...

CVE-2025-65319

When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...

CVE-2025-60721

Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...

EUVD-2025-93393

Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...

CVE-2023-0400

The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to bypass DLP controls when uploading sensitive data from a mapped drive into a web email client. Loading from a local driver was correctly prevented. Versions prior to 11.9...

Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections

A recently patched security vulnerability in the 7-Zip archiver tool was exploited in the wild to deliver the SmokeLoader malware. The flaw, CVE-2025-0411 CVSS score: 7.0, allows remote attackers to circumvent mark-of-the-web MotW protections and execute arbitrary code in the context of the curre...

SUSE-SU-2023:4214-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Updated to version 115.4.0 ESR bsc1216338: - CVE-2023-5721: Fixed a potential clickjack via queued up rendering. - CVE-2023-5722: Fixed a cross-Origin size and header leakage. - CVE-2023-5723: Fixed unexpected errors when handling inval...

NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems

The U.S. National Security Agency NSA on Thursday released guidance to help organizations detect and prevent infections of a Unified Extensible Firmware Interface UEFI bootkit called BlackLotus. To that end, the agency is recommending that "infrastructure owners take action by hardening user...

The vulnerability of the win32k component of the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the win32k component in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

September 10, 2019—KB4516067 (Monthly Rollup)

September 10, 2019—KB4516067 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB 4512478 released August 17, 2019 and addresses the following issues: Provides protections against a new subclass of speculative execution...

Black Hat 2018: Stealthy Kernel Attack Flies Under Windows Mitigation Radar

There are lots of Holy Grails when it comes to compromising endpoints. One of them has long been an attack that leads to kernel ring0 access on a Windows system. That translates into so-called “God Mode” for hackers — and “game over” for victims. This is why Microsoft has gone to great lengths ov...

June 13, 2017—KB4022715 (OS Build 14393.1358)

June 13, 2017—KB4022715 OS Build 14393.1358 Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where, after installing KB3164035, users cannot print enhanced metafile...

Researcher: 'MS Should Have Simple PDF Viewer'

Microsoft should add a basic PDF viewer to Windows to help protect users from the spike in attacks exploiting bugs in Adobe’s Reader, said a security researcher. Read the full article. Computerworld...

2022-11 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H1 for x64 (KB5020801)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

Security Update for Internet Explorer 5.01 Service Pack 4 (KB929969)

A security issue has been identified in the way Vector Markup Language VML is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...

Q329414: Security Update (MDAC 2.6)

This security update applies to a component of Windows known as the Microsoft Data Access Component MDAC. Please install now to help protect your Windows-based computer. For more information, read the associated Microsoft Security Bulletin at http://www.microsoft.com/security...

Cumulative Security Update for Outlook Express 6 Service Pack 1 (KB923694)

A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system using Outlook Express. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer...

Q329414: Security Update (MDAC 2.5)

This security update applies to a component of Windows known as the Microsoft Data Access Component MDAC. Please install now to help protect your Windows-based computer. For more information, read the associated Microsoft Security Bulletin at http://www.microsoft.com/security...