Malicious code in clobprice.api (npm)

A campaign of npm packages sharing a common dropper clob.js that downloads and persistently installs a Windows executable from IPFS on postinstall. The dropper fetches the binary from IPFS CID bafybeif3zkapj364ofnrvbty7oj5h5ufpxlp4s62usk3ulxrru35e3gssa via multiple public gateways Pinata,...

MAL-2026-4350 Malicious code in clobprice.api (npm)

A campaign of npm packages sharing a common dropper clob.js that downloads and persistently installs a Windows executable from IPFS on postinstall. The dropper fetches the binary from IPFS CID bafybeif3zkapj364ofnrvbty7oj5h5ufpxlp4s62usk3ulxrru35e3gssa via multiple public gateways Pinata,...

Windows Defender < 4.18.26040.7 DoS (CVE-2026-45498)

The Antimalware Platform version of Microsoft Windows Defender installed on the remote Windows host is prior to 4.18.26040.7. It is, therefore, affected by a denial of service vulnerability: - Microsoft Defender Denial of Service Vulnerability. CVE-2026-45498 Note that Nessus has not tested for...

Windows Registry Security Audit Scanner

This C++ program is a Windows Registry Security Scanner designed for defensive auditing. It checks the presence and status of critical system registry keys such as LSA, Windows Defender, Winlogon, and system policy configurations. It also inspects user accessibility-related registry paths under...

CVE-2025-50328

A vulnerability in B1 Free Archiver v1.5.86 allows files extracted from downloaded archives to bypass Windows Mark of the Web MotW protections. When an archive is downloaded from the internet and extracted using B1 Free Archiver, the software fails to propagate the 'Zone.Identifier' alternate dat...

PT-2026-36002

Name of the Vulnerable Software and Affected Versions B1 Free Archiver version 1.5.86 Description An issue exists where files extracted from downloaded archives bypass Windows Mark of the Web MotW protections. The software fails to propagate the Zone.Identifier alternate data stream—a mechanism...

CVE-2025-50328

CVE-2025-50328 affects B1 Free Archiver v1.5.86. The vulnerability occurs when files extracted from downloaded archives do not propagate the Zone.Identifier (MotW) ADS to extracted files, allowing them to bypass Windows Defender SmartScreen and security prompts. This can enable untrusted code exe...

Security Updates for Windows Defender (April 2026)

The Antimalware Platform version of Microsoft Windows Defender installed on the remote Windows host is prior to 4.18.26030.3011. It is, therefore, affected by a privilege escalation vulnerability: - Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to...

Microsoft Defender’s inability to address vulnerabilities

Microsoft has identified a vulnerability in System Center. A malicious individual could exploit this vulnerability by allowing Windows Defender to apply insufficient access control, thereby enabling an authorized attacker to escalate their privileges locally. UPDATE If Microsoft Defender...

Malicious code in pywin-simple-gui (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 43b40c0dbbbc187822a28a401194873adc73d13e531f2789c4227374f7ec9e26 The package pretends to be a development helper but, in fact, downloads a remote executable. Dynamic analysis reveals actions like disabling Windows Defender a...

Exploit for CVE-2020-14979

Intel NUC WinRing0 Vulnerable Driver - Permanent Removal Guide...

CVE-2025-62468

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally...

CVE-2025-62468

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally...

CVE-2025-62468

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally...

CVE-2025-62468

CVE-2025-62468 is a Windows Defender Firewall Service information-disclosure vulnerability caused by an out-of-bounds read that can disclose information locally to an authorized attacker. The issue is described consistently across sources as a local-privilege/ information-disclosure exposure affe...

CVE-2025-62468 Windows Defender Firewall Service Information Disclosure Vulnerability

...

EUVD-2025-202223

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally...

CVE-2025-62468 Windows Defender Firewall Service Information Disclosure Vulnerability

...

Windows Defender Firewall Service Information Disclosure Vulnerability

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally...

Microsoft Windows Defender 缓冲区错误漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft USA. A buffer error vulnerability exists in Microsoft Windows Defender. An attacker could exploit the vulnerability to obtain sensitive information. The following products and versions are...