#microsoft-security-updates

[ follow ]
#zero-day-vulnerabilities #privilege-escalation #security-patches #vulnerability-management
fromThe Hacker News
1 week ago

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

This month, over half (55%) of all Patch Tuesday CVEs were privilege escalation bugs, and of those, six were rated exploitation more likely across Windows Graphics Component, Windows Accessibility Infrastructure, Windows Kernel, Windows SMB Server, and Winlogon. We know these bugs are typically used by threat actors as part of post-compromise activity, once they get onto systems through other means (social engineering, exploitation of another vulnerability).
Information security
#zero-day-vulnerabilities
fromTechRepublic
1 month ago
Information security

Microsoft's February Patch Tuesday Fixes 6 Zero-Days Under Attack

Microsoft released patches for 58 vulnerabilities, including six actively exploited zero-days affecting Windows, Office, and Remote Desktop components.
fromComputerworld
4 months ago
Information security

For October's Patch Tuesday, a scary number of fixes

Microsoft released 175 updates including four zero-day vulnerabilities; Windows systems require immediate patching while other updates can follow normal schedules.
more#zero-day-vulnerabilities
fromThe Hacker News
1 month ago

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

Of the 59 flaws, five are rated Critical, 52 are rated Important, and two are rated Moderate in severity. Twenty-five of the patched vulnerabilities have been classified as privilege escalation, followed by remote code execution (12), spoofing (7), information disclosure (6), security feature bypass (5), denial-of-service (3), and cross-site scripting (1). It's worth noting that the patches are in addition to three security flaws that Microsoft has addressed in its Edge browser since the release of the January 2026 Patch Tuesday update,
Information security
Information security
fromZero Day Initiative
6 months ago

Zero Day Initiative - The September 2025 Security Update Review

Adobe and Microsoft released September 2025 security updates addressing numerous CVEs across many products, with most Adobe issues not known to be exploited.
[ Load more ]