#PatchTuesday

ICS Patch Tuesday: Security Advisories Released by CISA, Schneider, Siemens, Rockwell

by

November 13, 2024 at 07:21AM CISA, Schneider Electric, Siemens, and Rockwell Automation have issued security advisories for November 2024’s Patch Tuesday, focusing on vulnerabilities in industrial control systems. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **Participants:** CISA, Schneider Electric, Siemens, and Rockwell Automation. 2. **Key Event:** November 2024 Patch Tuesday security advisories have … Read more

Microsoft Fixes 90 New Flaws, Including Actively Exploited NTLM and Task Scheduler Bugs

by

November 13, 2024 at 07:15AM Microsoft’s November 2024 Patch Tuesday addressed 90 security flaws, including two actively exploited vulnerabilities in Windows NTLM and Task Scheduler. Notably, CVE-2024-43451 affects NTLMv2 hash disclosure, while CVE-2024-49039 allows privilege escalation. The update also highlights critical vulnerabilities in Azure CycleCloud and .NET, alongside adopting CSAF for improved vulnerability reporting. **Meeting … Read more

2 Zero-Day Bugs in Microsoft’s Nov. Update Under Active Exploit

by

November 12, 2024 at 05:45PM Microsoft’s November security update addresses 89 vulnerabilities, including four zero-day bugs actively exploited by attackers. Among these, CVE-2024-43451 allows unauthorized access to NTLMv2 hashes, while CVE-2024-49039 enables privilege escalation. Microsoft also adopted the Common Security Advisory Framework (CSAF) to improve vulnerability disclosure. ### Meeting Takeaways: 1. **Vulnerability Update**: – Microsoft … Read more

Windows 10 KB5046613 update released with fixes for printer bugs

by

November 12, 2024 at 02:43PM Microsoft released the mandatory KB5046613 cumulative update for Windows 10 (22H2 and 21H2), introducing a new account manager on the Start menu and fixing multi-function printer issues, among other bugs. Users can install it via Windows Update or manually from the Microsoft Update Catalog. ### Meeting Takeaways on Windows 10 … Read more

Windows 11 KB5046617 and KB5046633 cumulative updates released

by

November 12, 2024 at 01:36PM Microsoft has released mandatory cumulative updates KB5046617 and KB5046633 for Windows 11 versions 24H2 and 23H2, addressing security vulnerabilities and various issues. Users can install these updates via Windows Update or the Microsoft Update Catalog. Key fixes include enhancements to Task Manager, internet connectivity, and notification settings. ### Meeting Takeaways: … Read more

Patch Tuesday: Critical Flaws in Adobe Commerce, Photoshop, InDesign, Illustrator

by

November 12, 2024 at 01:04PM Adobe has released patches for critical vulnerabilities in several products, including Adobe Commerce and Magento Open Source, as part of its Patch Tuesday updates. This addresses significant security flaws to enhance user protection in applications like Photoshop, InDesign, and Illustrator. **Meeting Takeaways:** 1. Adobe has released patches addressing critical-severity bugs. … Read more

Microsoft says recent Windows 11 updates break SSH connections

by

November 9, 2024 at 03:12PM Microsoft confirmed that recent security updates are disrupting SSH connections on some Windows 11 systems (22H2 and 23H2), affecting enterprise, IOT, and education users. A temporary fix involves adjusting access control list permissions. The company is investigating potential impacts on home and pro editions and plans to release a resolution … Read more

Microsoft SharePoint RCE bug exploited to breach corporate network

by

November 2, 2024 at 07:40PM A Microsoft SharePoint vulnerability (CVE-2024-38094) is being actively exploited for unauthorized network access. Attackers exploited this RCE flaw to compromise systems, disable security measures, and conduct lateral movement within networks. Rapid7’s report highlights an ongoing threat, urging administrators to apply updates from July 2024 promptly to mitigate risks. **Meeting Takeaways** … Read more

Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel

by

October 28, 2024 at 01:42AM A new attack method can bypass Microsoft’s Driver Signature Enforcement on up-to-date Windows systems, enabling the loading of unsigned drivers and potential OS downgrades. This technique allows attackers to deploy rootkits, compromising system security. Enabling Virtualization-Based Security with UEFI lock and Mandatory flag can mitigate these vulnerabilities. ### Meeting Takeaways … Read more

Microsoft SharePoint Vuln Is Under Active Exploit

by

October 23, 2024 at 03:43PM A high-severity deserialization vulnerability in Microsoft SharePoint, CVE-2024-38094, is actively exploited, allowing authenticated attackers with Site Owner permissions to execute arbitrary code. Rated 7.2 on the CVSS, the flaw has patches available since July. Federal agencies must implement fixes by Nov. 12 due to potential exploitation risks. ### Meeting Takeaways: … Read more