🐛 COMMON VULNERABILITIES AND EXPOSURES 67[−]
13 JunCVE-2023-28310 Microsoft Exchange Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-24896 Dynamics 365 Finance Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-24937 Windows CryptoAPI Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-24938 Windows CryptoAPI Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29326 .NET Framework Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29353 Sysinternals Process Monitor for Windows Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32024 Microsoft Power Apps Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32029 Microsoft Excel Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32031 Microsoft Exchange Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33137 Microsoft Excel Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33139 Visual Studio Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33146 Microsoft Office Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-21565 Azure DevOps Server Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-21569 Azure DevOps Server Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29337 NuGet Client Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29012 GitHub: CVE-2023-29012 Git CMD erroneously executes `doskey.exe` in current directory, if it existsInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29011 GitHub: CVE-2023-29011 The config file of `connect.exe` is susceptible to malicious placingInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-25815 GitHub: CVE-2023-25815 Git looks for localized messages in an unprivileged placeInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29007 GitHub: CVE-2023-29007 Arbitrary configuration injection via `git submodule deinit`Information published.MSRC.MICROSOFT.COM
13 JunCVE-2023-25652 GitHub: CVE-2023-25652 "git apply --reject" partially-controlled arbitrary file writeInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29346 NTFS Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29351 Windows Group Policy Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29352 Windows Remote Desktop Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29355 DHCP Server Service Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29358 Windows GDI Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29359 GDI Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29360 Windows TPM Device Driver Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29361 Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29362 Remote Desktop Client Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29364 Windows Authentication Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29365 Windows Media Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29366 Windows Geolocation Service Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29367 iSCSI Target WMI Provider Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29368 Windows Filtering Platform Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29369 Remote Procedure Call Runtime Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29371 Windows GDI Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29372 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-29373 Microsoft ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32008 Windows Resilient File System (ReFS) Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32009 Windows Collaborative Translation Framework Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32010 Windows Bus Filter Driver Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32011 Windows iSCSI Discovery Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32012 Windows Container Manager Service Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32013 Windows Hyper-V Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32014 Windows Pragmatic General Multicast (PGM) Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32015 Windows Pragmatic General Multicast (PGM) Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32016 Windows Installer Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32017 Microsoft PostScript Printer Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32018 Windows Hello Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32019 Windows Kernel Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32021 Windows SMB Witness Service Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-32022 Windows Server Service Security Feature Bypass VulnerabilityWindows Server Service Security Feature Bypass VulnerabilityMSRC.MICROSOFT.COM
13 JunCVE-2023-32030 .NET and Visual Studio Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33131 Microsoft Outlook Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33133 Microsoft Excel Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33135 .NET and Visual Studio Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-27909 AutoDesk: CVE-2023-27909 Out-Of-Bounds Write Vulnerability in Autodesk® FBX® SDK 2020 or priorInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-27910 AutoDesk: CVE-2023-27910 stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or priorInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-27911 AutoDesk: CVE-2023-27911 Heap buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or priorInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33140 Microsoft OneNote Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33144 Visual Studio Code Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-33145 Microsoft Edge (Chromium-based) Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 JunCVE-2023-23396 Microsoft Excel Denial of Service VulnerabilityAdded FAQ information. This is an informational change only.MSRC.MICROSOFT.COM
13 JunCVE-2023-23398 Microsoft Excel Spoofing VulnerabilityAdded FAQ information. This is an informational change only.MSRC.MICROSOFT.COM
13 JunCVE-2023-24880 Windows SmartScreen Security Feature Bypass VulnerabilityUpdated one or more CVSS scores for the affected products. This is an informational change only.MSRC.MICROSOFT.COM
13 JunCVE-2021-34527 Windows Print Spooler Remote Code Execution VulnerabilityIn the Security Updates table, added all supported editions of Windows 10 version 21H2, Windows 11 version 21H2, Windows 11 version 22H2, and Windows Server 2022 as they are affected by this vulnerability. Customers running any of these versions of Windows should install listed u…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 1[−]
13 JunSecurity audit of Mithril Security BlindAIMithril Security engaged a collaboration with Quarkslab to perform an audit of the BlindAI-preview , now known as BlindAI Core , which is an open-source confidential computing solution for querying and deploying AI models while guaranteeing data privacy. The goal of the audit was…QUARKSLAB.COM
📢 SECURITY ADVISORIES 1[−]
🔥 INCIDENT REPORTING 1[−]
13 JunCyber insurance: What is it and does my company need it?While not a 'get out of jail free card' for your business, cyber insurance can help insulate it from the financial impact of a cyber-incidentWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 1[−]
13 Junwelcomesubmitted by 0xCBE to cloudsecurity 15 points | 3 comments Hi all, I am the moderator of r/cloudsecurity Following the reddit controversy I’ve closed the subreddit and started moving it here. You are very welcome to join and contribute!INFOSEC.PUB