MATLOCK.CA
277Articles
9Categories
2025-10-14Date
🚨
CISA Adds Five Known Exploited Vulnerabilities to CatalogCISA has added five new vulnerabilities to its  Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2016-7836 SKYSEA Client View Improper Authentication Vulnerability CVE-2025-6264 Rapid7 Velociraptor Incorrect Default Permissions Vu…
KEVCISA.GOV — Tue, 14 Oct 25 1
πŸ›
Elastic Cloud Enterprise Flaw Lets Attackers Run Malicious Commands
GBHACKERS.COM — 14 Oct 2025
πŸ›
Oracle issues second emergency patch for E-Business Suite in two weeks
KEVCSOONLINE.COM — 14 Oct 2025
πŸ›
SonicWall VPNs face a breach of their own after the September cloud-backup fallout
CSOONLINE.COM — 14 Oct 2025
πŸ›
SAP NetWeaver Memory Corruption Flaw Lets Attackers Send Corrupted Logon Tickets
GBHACKERS.COM — 14 Oct 2025
πŸ›
PolarEdge C2 Communication via Custom Binary Protocol with Custom TLS Server
GBHACKERS.COM — 14 Oct 2025
πŸ›
Oracles silently fixes zero-day exploit leaked by ShinyHunters
KEVBLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ›
CVE-2025-47989 Azure Connected Machine Agent Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-48004 Microsoft Brokering File System Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-50174 Windows Device Association Broker Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-53782 Microsoft Exchange Server Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55247 .NET Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55315 ASP.NET Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-24990 Windows Agere Modem Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-24052 Windows Agere Modem Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55320 Configuration Manager Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55325 Windows Storage Management Provider Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55333 Windows BitLocker Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55335 Windows NTFS Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55336 Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55338 Windows BitLocker Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55339 Windows Network Driver Interface Specification Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55340 Windows Remote Desktop Protocol Security Feature Bypass
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55676 Windows USB Video Class System Driver Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55677 Windows Device Association Broker Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55681 Desktop Windows Manager Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55685 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55686 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55687 Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55689 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55700 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55701 Windows Authentication Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58715 Windows Speech Runtime Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58716 Windows Speech Runtime Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58717 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58719 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58722 Microsoft DWM Core Library Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58728 Windows Bluetooth Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58732 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58735 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59185 NTLM Hash Disclosure Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59186 Windows Kernel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59195 Microsoft Graphics Component Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59196 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59199 Software Protection Platform (SPP) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59200 Data Sharing Service Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59201 Network Connection Status Indicator (NCSI) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59202 Windows Remote Desktop Services Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59204 Windows Management Services Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59206 Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59207 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59211 Windows Push Notification Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59228 Microsoft SharePoint Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59231 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59233 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59234 Microsoft Office Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59235 Microsoft Excel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59236 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59237 Microsoft SharePoint Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59242 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-49708 Microsoft Graphics Component Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59243 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59249 Microsoft Exchange Server Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59250 JDBC Driver for SQL Server Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59254 Microsoft DWM Core Library Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59255 Windows DWM Core Library Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-54957 MITRE CVE-2025-54957: Integer overflow in Dolby Digital Plus audio decoder
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59257 Windows Local Session Manager (LSM) Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59258 Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59259 Windows Local Session Manager (LSM) Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59277 Windows Authentication Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59280 Windows SMB Client Tampering Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-47979 Microsoft Failover Cluster Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-54132 GitHub CVE-2025-54132: Arbitrary Image Fetch in Mermaid Diagram Tool
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59281 Xbox Gaming Services Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59282 Internet Information Services (IIS) Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59284 Windows NTLM Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59288 Playwright Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59290 Windows Bluetooth Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59291 Confidential Azure Container Instances Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59292 Azure Compute Gallery Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59294 Windows Taskbar Live Preview Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59295 Windows URL Parsing Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59494 Azure Monitor Agent Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2016-9535 MITRE CVE-2016-9535: LibTIFF Heap Buffer Overflow Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59502 Remote Procedure Call Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-48813 Virtual Secure Mode Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-25004 PowerShell Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-53717 Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-50152 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-53150 Windows Digital Media Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-50175 Windows Digital Media Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-53139 Windows Hello Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-53768 Xbox IStorageService Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55240 Visual Studio Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55248 .NET, .NET Framework, and Visual Studio Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55326 Windows Connected Devices Platform Service (Cdpsvc) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55328 Windows Hyper-V Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55330 Windows BitLocker Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55331 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55332 Windows BitLocker Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55334 Windows Kernel Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55337 Windows BitLocker Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55678 DirectX Graphics Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55679 Windows Kernel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55680 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55682 Windows BitLocker Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55683 Windows Kernel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55684 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55688 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55690 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55691 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55692 Windows Error Reporting Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55693 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55694 Windows Error Reporting Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55695 Windows WLAN AutoConfig Service Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55696 NtQueryInformation Token function (ntifs.h) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55697 Azure Local Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55698 DirectX Graphics Kernel Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-55699 Windows Kernel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58714 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58718 Remote Desktop Client Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58720 Windows Cryptographic Services Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58724 Arc Enabled Servers - Azure Connected Machine Agent Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58725 Windows COM+ Event System Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58726 Windows SMB Server Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58727 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58729 Windows Local Session Manager (LSM) Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58730 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58731 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58733 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58734 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58736 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58737 Remote Desktop Protocol Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58738 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-58739 Microsoft Windows File Explorer Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59184 Storage Spaces Direct Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59187 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59188 Microsoft Failover Cluster Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59189 Microsoft Brokering File System Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59190 Windows Search Service Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59191 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59192 Storport.sys Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59193 Windows Management Services Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59194 Windows Kernel Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59197 Windows ETL Channel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59198 Windows Search Service Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59203 Windows State Repository API Server File Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59205 Windows Graphics Component Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59208 Windows MapUrlToZone Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59209 Windows Push Notification Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59210 Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59213 Configuration Manager Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59214 Microsoft Windows File Explorer Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59221 Microsoft Word Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59222 Microsoft Word Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59223 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59224 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59225 Microsoft Excel Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59226 Microsoft Office Visio Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59227 Microsoft Office Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59229 Microsoft Office Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59232 Microsoft Excel Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59238 Microsoft PowerPoint Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59241 Windows Health and Optimized Experiences Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-2884 Cert CC: CVE-2025-2884 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59244 NTLM Hash Disclosure Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59248 Microsoft Exchange Server Spoofing Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59230 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59253 Windows Search Service Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59260 Microsoft Failover Cluster Virtual Driver Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59261 Windows Graphics Component Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59275 Windows Authentication Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59278 Windows Authentication Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59285 Azure Monitor Agent Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59287 Windows Server Update Service (WSUS) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59289 Windows Bluetooth Service Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-47827 MITRE CVE-2025-47827: Secure Boot bypass in IGEL OS before 11
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
CVE-2025-59497 Microsoft Defender for Linux Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 14 Oct 2025
πŸ›
Oracle silently fixes zero-day exploit leaked by ShinyHunters
KEVBLEEPINGCOMPUTER.COM — 14 Oct 2025
⚠️
EU to sign UN Convention on Cybercrime
CSOONLINE.COM — 14 Oct 2025
⚠️
Clevo UEFI Leak Allows Signing of Malicious Firmware with BootGuard Keys
GBHACKERS.COM — 14 Oct 2025
⚠️
FBI Shuts Down Breach Forums and New Cyber Threats Unveiled
CYBERSECURITYTODAY.LIBSYN.COM — 14 Oct 2025
⚠️
Simple Prompt Injection Lets Hackers Bypass OpenAI Guardrails Framework
GBHACKERS.COM — 14 Oct 2025
⚠️
Ivanti Patches 13 Endpoint Manager Flaws Allowing Remote Code Execution
GBHACKERS.COM — 14 Oct 2025
⚠️
CISOs must rethink the tabletop, as 57% of incidents have never been rehearsed
CSOONLINE.COM — 14 Oct 2025
⚠️
Threat Actors Exploit ScreenConnect to Gain Unauthorized Remote Access
GBHACKERS.COM — 14 Oct 2025
⚠️
PoC Released for Sudo chroot Flaw Allowing Local Privilege Escalation
GBHACKERS.COM — 14 Oct 2025
⚠️
North Korean IT Workers Use VPNs and Laptop Farms to Evade Identity Verification
GBHACKERS.COM — 14 Oct 2025
⚠️
Inside the OWASP GenAI Security Project - Steve Wilson - ASW #352
YOUTUBE.COM — 2025-10-14
⚠️
RMPocalypse: New Attack Breaks AMD Confidential Computing
SECURITYWEEK.COM — 14 Oct 2025
⚠️
Malicious NPM Packages Used in Sophisticated Developer Cyberattack
GBHACKERS.COM — 14 Oct 2025
⚠️
The Trump Administration’s Increased Use of Social Media Surveillance
SCHNEIER.COM — 2025-10-14
⚠️
Salesforce Extortion Group Leaks Data After FBI Disruption
SH.ITJUST.WORKS — 14 Oct 2025
⚠️
RMPocalypse: Single 8-Byte Write Shatters AMD’s SEV-SNP Confidential Computing
THEHACKERNEWS.COM — 14 Oct 2025
⚠️
New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without Permissions
THEHACKERNEWS.COM — 14 Oct 2025
⚠️
Discord Weaponized as C2 Server Across Popular Open-Source Package Repositories
GBHACKERS.COM — 14 Oct 2025
⚠️
Microsoft restrains exploited legacy IE mode in Edge browser - iTnews
SH.ITJUST.WORKS — 14 Oct 2025
⚠️
Harvard Is First Confirmed Victim of Oracle EBS Zero-Day Hack
SECURITYWEEK.COM — 14 Oct 2025
⚠️
Secure Boot bypass risk on nearly 200,000 Linux Framework sytems
BLEEPINGCOMPUTER.COM — 14 Oct 2025
⚠️
Security firms debate CVE credit in overlapping vulnerability reports
BLEEPINGCOMPUTER.COM — 14 Oct 2025
⚠️
Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers
QUARKSLAB.COM — 2025-10-14
⚠️
Microsoft raises the bar: A smarter way to measure AI for cybersecurity
MICROSOFT.COM — 14 Oct 2025
⚠️
Security firms dispute credit for overlapping CVE reports
BLEEPINGCOMPUTER.COM — 14 Oct 2025
⚠️
Chinese Hackers Exploit ArcGIS Server as Backdoor for Over a Year
THEHACKERNEWS.COM — 14 Oct 2025
⚠️
CISA Releases One Industrial Control Systems Advisory
CISA.GOV — Tue, 14 Oct 25 1
⚠️
Microsoft Patch Tuesday October 2025, (Tue, Oct 14th)
ISC.SANS.EDU — 14 Oct 2025
⚠️
Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws
BLEEPINGCOMPUTER.COM — 14 Oct 2025
⚠️
Microsoft Patch Tuesday October 2025 – 172 Vulnerabilities Fixed Along with 4 Zero-days
KEVGBHACKERS.COM — 14 Oct 2025
⚠️
This new Android exploit can steal everything on your screen - even 2FA codes | ZDNET
SH.ITJUST.WORKS — 14 Oct 2025
⚠️
Scattered Lapsus$ Hunters extortion site goes dark: What’s next?
CSOONLINE.COM — 14 Oct 2025
⚠️
Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access
TRENDMICRO.COM — 14 Oct 2025
⚠️
Bikers, Apple, Storm-657, Astaroth, EES, Salesforce, Aaran Leyland, and more... - SWN #520
YOUTUBE.COM — 2025-10-14
⚠️
Patch Tuesday, October 2025 β€˜End of 10’ Edition
KEVKREBSONSECURITY.COM — 14 Oct 2025
⚠️
Company Wrecked by Ransomware Only Spent 120,000 Pounds Per Year on Cyber Security
TAOSECURITY.BLOGSPOT.COM — 2025-10-14
πŸ“‹
Windows 10 Still on Over 40% of Devices as It Reaches End of Support
SECURITYWEEK.COM — 14 Oct 2025
πŸ“‹
Final Windows 10 Patch Tuesday update rolls out as support ends
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ“‹
Cybersecurity Awareness Month 2025: Why software patching matters more than ever
WELIVESECURITY.COM — 14 Oct 2025
πŸ“’
Moving Beyond Awareness: How Threat Hunting Builds Readiness
THEHACKERNEWS.COM — 14 Oct 2025
πŸ“’
Dell security advisory (AV25-657)
CYBER.GC.CA — 2025-10-14
πŸ“’
IBM security advisory (AV25-656)
CYBER.GC.CA — 2025-10-14
πŸ“’
Ubuntu security advisory (AV25-658)
CYBER.GC.CA — 2025-10-14
πŸ“’
Red Hat security advisory (AV25-659)
CYBER.GC.CA — 2025-10-14
πŸ“’
[Control systems] CISA ICS security advisories (AV25–660)
CYBER.GC.CA — 2025-10-14
πŸ“’
Ivanti security advisory (AV25-661)
CYBER.GC.CA — 2025-10-14
πŸ“’
SAP security advisory – October 2025 monthly rollup (AV25-662)
CYBER.GC.CA — 2025-10-14
πŸ“’
Qualcomm security advisory – October 2025 monthly rollup (AV25-664)
CYBER.GC.CA — 2025-10-14
πŸ“’
HPE security advisory (AV25-663)
CYBER.GC.CA — 2025-10-14
πŸ“’
Microsoft: Exchange 2016 and 2019 have reached end of support
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ“’
VMware security advisory (AV25-665)
CYBER.GC.CA — 2025-10-14
πŸ”₯
178,000+ Invoices Expose Customer Data from Invoicely Platform
GBHACKERS.COM — 14 Oct 2025
πŸ”₯
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels
THEHACKERNEWS.COM — 14 Oct 2025
πŸ”₯
Vom CISO zum Chief Risk Architect
CSOONLINE.COM — 14 Oct 2025
πŸ”₯
SimonMed Data Breach Exposes Sensitive Information of 1.2 Million Patients
GBHACKERS.COM — 14 Oct 2025
πŸ”₯
SonicWall VPN accounts breached using stolen creds in widespread attacks
SH.ITJUST.WORKS — 14 Oct 2025
πŸ”₯
SimonMed says 1.2 million patients impacted in January data breach
SH.ITJUST.WORKS — 14 Oct 2025
πŸ”₯
When AI Agents Join the Teams: The Hidden Security Shifts No One Expects
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ”₯
HyperBunker Raises Seed Funding to Launch Next-Generation Anti-Ransomware Device
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
TA585 Deploys Novel Web-Injection to Deliver MonsterV2 Malware on Windows
GBHACKERS.COM — 14 Oct 2025
πŸ•΅οΈ
Researchers Expose TA585’s MonsterV2 Malware Capabilities and Attack Chain
THEHACKERNEWS.COM — 14 Oct 2025
πŸ•΅οΈ
Cyberangriff auf Bundesagentur
CSOONLINE.COM — 14 Oct 2025
πŸ•΅οΈ
Hackers Mimic as OpenAI and Sora Services to Steal Login Credentials
GBHACKERS.COM — 14 Oct 2025
πŸ•΅οΈ
Gcore Mitigates Record-Breaking 6 Tbps DDoS Attack
GBHACKERS.COM — 14 Oct 2025
πŸ•΅οΈ
CISO Conversations: Are Microsoft’s Deputy CISOs a Signpost to the Future?
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
Beyond the Black Box: Building Trust and Governance in the Age of AI
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
Pixnapping Attack Steals Data From Google, Samsung Android Phones
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
OpenAI’s Guardrails Can Be Bypassed by Simple Prompt Injection Attack
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Chinese hackers abuse geo-mapping tool for year-long persistence
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ•΅οΈ
2 Radiology Practices Disclose Hacks Affecting 1.5M Patients
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Invoicely Database Leak Exposes 180,000 Sensitive Records
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Fraud Prevention Firm Resistant AI Raises $25 Million
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
Hackers Use Court-Themed Phishing to Deliver Info-Stealer Malware
GBHACKERS.COM — 14 Oct 2025
πŸ•΅οΈ
CyberheistNews Vol 15 #41 [AI Misuse Alert] New Phishing Campaign Uses AI Tools to Evade Detection
KNOWBE4.COM — 14 Oct 2025
πŸ•΅οΈ
RealBlindingEDR Tool That Permanently Turns Off AV/EDR Using Kernel Callbacks
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
SAP Patches Critical Vulnerabilities in NetWeaver, Print Service, SRM
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
Cybereason Acquired by MSSP Giant LevelBlue
SECURITYWEEK.COM — 14 Oct 2025
πŸ•΅οΈ
Sweet Security Named Cloud Security Leader and CADR Leader in Latio Cloud Security Report
GBHACKERS.COM — 14 Oct 2025
πŸ•΅οΈ
Criminal IP to Showcase ASM and CTI Innovations at GovWare 2025 in Singapore
GBHACKERS.COM — 14 Oct 2025
πŸ•΅οΈ
Upcoming Speaking Engagements
SCHNEIER.COM — 2025-10-14
πŸ•΅οΈ
News Alert: Gcore neutralizes record DDoS attack β€” underscores need for adaptive mitigation
LASTWATCHDOG.COM — 14 Oct 2025
πŸ•΅οΈ
News alert: Sweet Security named cloud, CADR leader for AI-driven runtime threat detection
LASTWATCHDOG.COM — 14 Oct 2025
πŸ•΅οΈ
Satellites Are Leaking the World’s Secrets: Calls, Texts, Military and Corporate Data
INFOSEC.PUB — 14 Oct 2025
πŸ•΅οΈ
New Rust-Based Malware "ChaosBot" Uses Discord Channels to Control Victims' PCs
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Hackers Use Court-Themed Phishing to Deliver Info-Stealer Malware
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Hacker Group TA585 Emerges With Advanced Attack Infrastructure - Infosecurity Magazine
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence - Infosecurity Magazine
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Sonicwall confirms exfil of all (encrypted/encoded) connected firewall backup configurations
SH.ITJUST.WORKS — 14 Oct 2025
πŸ•΅οΈ
Malicious crypto-stealing VSCode extensions resurface on OpenVSX
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ•΅οΈ
ISC Stormcast For Wednesday, October 15th, 2025 https://isc.sans.edu/podcastdetail/9656, (Tue, Oct 14th)
ISC.SANS.EDU — 14 Oct 2025
πŸŽ™οΈ
The AI Fix #72: The AI hype train, space data centers, and lifelike robot heads
GRAHAMCLULEY.COM — 14 Oct 2025
πŸ“‘
What AI Reveals About Web Applicationsβ€” and Why It Matters
THEHACKERNEWS.COM — 14 Oct 2025
πŸ“‘
Shift left, stay ahead: The case for early threat prevention
SOPHOS.COM — 14 Oct 2025
πŸ“‘
Satellites found exposing unencrypted data, including phone calls and some military comms
TECHCRUNCH.COM — 14 Oct 2025
πŸ“‘
Microsoft warns that Windows 10 reaches end of support today
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ“‘
US seizes $15 billion in crypto from 'pig butchering' kingpin
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ“‘
Windows 11 KB5066835 and KB5066793 updates released
BLEEPINGCOMPUTER.COM — 14 Oct 2025
πŸ“‘
New Android Pixnapping attack steals MFA codes pixel-by-pixel
BLEEPINGCOMPUTER.COM — 14 Oct 2025