Microsoft Security Windows Microsoft May 2025 Patch Tuesday – Overview and Analysis May 14, 2025 / May 14, 2025 by Corentin C | Leave a Comment Microsoft's May 2025 Patch Tuesday delivers crucial security updates for 71 vulnerabilities, including five zero-days actively exploited in the wild. This month’s patch spans across major products like Windows, Azure, and Visual Studio, strengthening defenses against Remote Code Execution (RCE) and Elevation of Privilege (EoP) vulnerabilities. Read more » cve security update windows
Microsoft Security Windows Microsoft’s April 2025 Patch Tuesday: 121 Vulnerabilities Patched, Including One Zero-Day Exploited in the Wild April 9, 2025 / April 9, 2025 by Corentin C | Leave a Comment Microsoft's April 2025 Patch Tuesday addresses 121 vulnerabilities, including a zero-day actively exploited. Critical RDP and LDAP flaws highlight the urgency of this month's security updates. Read more » april 2025 cve ldap patch tuesday rdp security sharepoint windows
News Security OpenSSH Vulnerabilities: CVE-2025-26465 and CVE-2025-26466 February 21, 2025 by Corentin C | Leave a Comment Two critical OpenSSH vulnerabilities have been discovered: a MitM attack (CVE-2025-26465) and a DoS attack (CVE-2025-26466). Learn how to protect your systems with recommended security measures. Read more » cve dos mitm openssh qualys ssh
Apple News Security Apple Releases Security Fixes in iOS 18.3.1 and iPadOS 18.3.1 February 19, 2025 / February 25, 2025 by Corentin C | Leave a Comment Apple’s latest iOS 18.3.1 and iPadOS 18.3.1 updates fix a critical security flaw that could allow attackers to bypass USB Restricted Mode on locked devices. This vulnerability (CVE-2025-24200) has been exploited in targeted attacks. Learn why this update matters and how to secure your device. Read more » apple cve ios security
Security Windows Critical Windows Vulnerability – PoC for CVE-2024-43452 Now Available January 9, 2025 / January 9, 2025 by Corentin C | Leave a Comment A new PoC exploit for CVE-2024-43452 affects Windows 11 23H2, allowing attackers to escalate privileges to SYSTEM level through malicious SMB responses. This flaw, discovered by Google Project Zero, exposes serious risks, and Microsoft has already addressed it in the November 2024 updates. Apply the patch immediately and follow best practices to secure your systems. Read more » cve elevation poc security windows
News Security High-Severity Vulnerability Found in Dell SupportAssist: CVE-2024-52535 January 8, 2025 / January 8, 2025 by Corentin C | Leave a Comment A newly disclosed vulnerability, CVE-2024-52535, in Dell SupportAssist could allow attackers to escalate privileges and delete critical files. Affecting both Home and Business PC versions, this high-severity flaw highlights the importance of updating to the latest software versions. Find out how to mitigate this risk effectively. Read more » cve dell security
News Microsoft August 2024 Patch Tuesday: Key Highlights August 20, 2024 / August 21, 2024 by Corentin C Microsoft’s August 2024 Patch Tuesday addresses 88 vulnerabilities, including six already exploited in the wild. This comprehensive update includes critical fixes for Windows, Office, and other products, making it essential for organizations to patch promptly. Read more » cve security update windows
News Security $2,751 Bounty Award: Avada WordPress Theme Vulnerability Patched February 28, 2024 / February 28, 2024 by Corentin C Discover the details behind the recent $2,751 bounty awarded for patching an arbitrary file upload vulnerability in the Avada WordPress theme. Learn about the responsible disclosure process, the technical analysis, and recommendations for safeguarding your website. Read more » cve security wordpress
News Security $2,063 Bounty Awarded for Patched SQL Injection Vulnerability in Ultimate Member WordPress Plugin February 27, 2024 / February 27, 2024 by Corentin C Recently, a critical security flaw was discovered in Ultimate Member, a widely-used WordPress plugin, exposing over 200,000 websites to potential exploits. Learn how a $2,063 bounty was awarded for patching this SQL Injection vulnerability and how users can safeguard their sites against similar threats. Read more » cve security wordpress
News Security Software Microsoft February 2024 Patch Tuesday: Key Vulnerabilities and Update Issues February 27, 2024 / February 28, 2024 by Corentin C | 1 Comment on Microsoft February 2024 Patch Tuesday: Key Vulnerabilities and Update Issues In February 2024, Microsoft released its Patch Tuesday updates addressing 73 security vulnerabilities, including two zero-days actively exploited in the wild. Learn about the critical CVEs patched, installation issues on Windows 11 systems, and temporary solutions provided by Microsoft. Read more » cve security windows
