🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
19 OctAwareness and guidance related to potential Service Fabric Explorer (SFX) v1 web client riskSummary Summary Microsoft was recently made aware of a Cross-Site Scripting (XSS) vulnerability (CVE-2022-35829), that under limited circumstances, affects older versions of Service Fabric Explorer (SFX). The current default SFX web client (SFXv2) is not vulnerable to this attack…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 1[−]
19 OctChrome extensions used to steal users’ secretsLearn how Chrome extensions are being used for nefarious purposes. The post Chrome extensions used to steal users’ secrets appeared first on Infosec Resources .RESOURCES.INFOSECINSTITUTE.COM
📡 INFOSEC NEWS 1[−]
19 OctInvestigation Regarding Misconfigured Microsoft Storage LocationOctober 28, 2022 update: Added a Customer FAQ section. Summary Summary Security researchers at SOCRadar informed Microsoft on September 24, 2022, of a misconfigured Microsoft endpoint. This misconfiguration resulted in the potential for unauthenticated access to some business tra…MSRC.MICROSOFT.COM