Windows Mobile Device Management 0-day vulnerability could lead to local privilege escalation

A security researcher has discovered a zero-day vulnerability CVE-2021-24084 in Windows Mobile Device Management that could allow information disclosure and local privilege escalation (LPE).

Continue ReadingWindows Mobile Device Management 0-day vulnerability could lead to local privilege escalation

Microsoft November 2021 Security Updates includes fixes for 2 zero-days under active exploit

Microsoft has released the November 2021 Security Updates that includes patches for 55 vulnerabilities, 6 of those rated Critical. The updates also address 2 zero-day bugs being actively exploited in the wild.

Continue ReadingMicrosoft November 2021 Security Updates includes fixes for 2 zero-days under active exploit

Google releases Chrome 95 security update (95.0.4638.69) with fixes for 2 High risk zero-days exploited in the wild

Google has released Chrome 95 security update (95.0.4638.69) for Windows, Mac and Linux with fixes for multiple High risk vulnerabilities, 2 of those are being exploited in the wild.

Continue ReadingGoogle releases Chrome 95 security update (95.0.4638.69) with fixes for 2 High risk zero-days exploited in the wild

Microsoft October 2021 Security Updates includes fixes for 4 zero-days, 1 actively exploited

Microsoft has released the October 2021 Security Updates that includes patches for 74 vulnerabilities, 3 of those rated Critical. The updates also address 4 zero-day bugs, 1 of those actively exploited in the wild.

Continue ReadingMicrosoft October 2021 Security Updates includes fixes for 4 zero-days, 1 actively exploited

Apples releases security updates for iOS 12.5.5 and macOS Catalina (with fixes for exploits in the wild)

Apple has released security updates to fix vulnerabilities in iOS 12.5.5 and macOS Catalina. The tech giant also warned of active exploits in the wild against some vulnerabilities.

Continue ReadingApples releases security updates for iOS 12.5.5 and macOS Catalina (with fixes for exploits in the wild)