Remove .Net Remove Azure Remove LAN
article thumbnail

Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs (CVE-2024-21351, CVE-2024-21412)

Tenable

Successful exploitation of this flaw would allow an attacker to relay a New Technology LAN Manager Version 2 (NTLMv2) hash against a vulnerable server. In order to exploit this flaw, an attacker would need to be authenticated with LAN-access and have a valid login for an Exchange user.

LAN 128
article thumbnail

Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)

Tenable

Successful exploitation of this flaw would allow for the disclosure of New Technology LAN Manager (NTLM) hashes. Successful exploitation of these vulnerabilities requires an attacker to authenticate with LAN-access and have valid credentials for an Exchange user. Each of these vulnerabilities were given CVSSv3 scores of 8.0

LAN 123
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

Microsoft’s August 2024 Patch Tuesday Addresses 88 CVEs

Tenable

Critical CVE-2024-38109 | Azure Health Bot Elevation of Privilege Vulnerability CVE-2024-38109 is a critical severity EoP vulnerability affecting Azure Health Bot. and is the result of a SSRF vulnerability in Azure Health Bot that can be abused to escalate privileges. This vulnerability received a CVSSv3 score of 9.1

IPv6 126
article thumbnail

Microsoft’s August 2023 Patch Tuesday Addresses 73 CVEs (CVE-2023-38180)

Tenable

NET and Visual Studio Denial of Service Vulnerability CVE-2023-38180 is a Denial of Service (DoS) vulnerability in Microsoft Visual Studio,NET versions 6.0 In order to successfully exploit this flaw, the attacker would first need to have LAN access and valid credentials for an Exchange user. These were omitted from our totals.

Windows 98
article thumbnail

Microsoft’s August 2021 Patch Tuesday Addresses 44 CVEs (CVE-2021-26424, CVE-2021-36948)

Tenable

This month’s update includes patches for: NET Core & Visual Studio. Azure Sphere. Microsoft Azure Active Directory Connect. This is the second time in 2021 that Microsoft has patched less than 50 vulnerabilities in a Patch Tuesday release. Microsoft Dynamics. Microsoft Graphics Component. Microsoft Office.

Windows 100
article thumbnail

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

Tenable

This month’s update includes patches for: NET Core. Azure Service Fabric Container. Successful exploitation could lead to disclosure of New Technology LAN Manager (NTLM) hashes and NTLM relay attacks. Microsoft patched 98 CVEs in its January 2023 Patch Tuesday Release, with 11 rated as critical, and 87 rated as important.

Windows 100
article thumbnail

What we learned at MWC Barcelona 2023

Capgemini

Cisco and NTT have partnered to bring managed private 5G solutions that can be integrated with enterprises’ pre-existing LAN/WAN and Cloud infrastructures. Going forward, we expect more telcos to demand energy efficient solutions to safeguard their margins while also sticking to their net zero commitments.

Energy 52