2022, Authentication and LAN

2022

Authentication

LAN

Microsoft’s May 2022 Patch Tuesday Addresses 73 CVEs (CVE-2022-26925)

Tenable

MAY 10, 2022

Microsoft addresses 73 CVEs in its May 2022 Patch Tuesday release, including two zero-day vulnerabilities, one of which was exploited in the wild. Microsoft patched 73 CVEs in its May 2022 Patch Tuesday release, with six rated as critical, 66 rated as important and one rated as low. Windows Authentication Methods. 6 Critical.

Windows

Windows Authentication LAN Policies

Microsoft’s February 2025 Patch Tuesday Addresses 55 CVEs (CVE-2025-21418, CVE-2025-21391)

Tenable

FEBRUARY 11, 2025

A local, authenticated attacker could exploit this vulnerability to elevate to SYSTEM level privileges. A local, authenticated attacker could exploit this vulnerability to delete files from a system. of the vulnerabilities patched this month, followed by elevation of privilege (EoP) vulnerabilities at 34.5%. and is rated important.

Windows

Windows Authentication Azure Storage

Join 49,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Trending Sources

Hybrid working: network managers need to take care of unfinished business

CIO

DECEMBER 13, 2022

Today, the need for long-term solutions means that hybrid working is one of the top three trends driving network modernization – as reflected in the 2022-23 Global Network Report published by NTT. NTT’s recipe for hybrid working begins with zero trust network architecture, identity management and multifactor authentication.

Network

Network Wireless LAN WAN

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs (CVE-2024-21351, CVE-2024-21412)

Tenable

FEBRUARY 13, 2024

Since 2022, there have been five Windows SmartScreen vulnerabilities disclosed across Patch Tuesday. CVE Description CVSSv3 Severity Patch Tuesday CVE-2022-44698 Windows SmartScreen Security Feature Bypass Vulnerability 5.4 Moderate December 2022 CVE-2023-24880 Windows SmartScreen Security Feature Bypass Vulnerability 4.4

LAN

LAN Windows Azure Internet

Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)

Tenable

SEPTEMBER 12, 2023

Successful exploitation of this flaw would allow for the disclosure of New Technology LAN Manager (NTLM) hashes. Successful exploitation of these vulnerabilities requires an attacker to authenticate with LAN-access and have valid credentials for an Exchange user. Each of these vulnerabilities were given CVSSv3 scores of 8.0

LAN

LAN Windows 3D Azure

It's 2022. Why do you keep using SMB?

Ivanti

MARCH 4, 2022

communication protocol that was originally created by IBM and was used by Microsoft in its LAN Manager product during the mid-1990s. encryption added in SMB3 and implemented a pre-authentication integrity check using?SHA-512?hash. The history of SMB (and why it's no longer relevant). Server Message Block?(SMB) Windows 10?and?Windows

SMB

SMB LAN Authentication Windows

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

Tenable

JANUARY 10, 2023

Windows Authentication Methods. This continues a trend observed last year, where the NSA disclosed three vulnerabilities in Print Spooler, beginning with CVE-2022-29104 and CVE-2022-29132 in May 2022 and leading to CVE-2022-38028 in October 2022. and could grant an authenticated attacker SYSTEM privileges.

Windows

Windows Software Review Operating System Systems Review

Microsoft’s October 2023 Patch Tuesday Addresses 103 CVEs (CVE-2023-36563, CVE-2023-41763)

Tenable

OCTOBER 10, 2023

Successful exploitation could lead to the disclosure of New Technology LAN Manager (NTLM) hashes. Researcher Florian Hauser of Code White GmbH published a two-part blog series in September 2022 investigating Skype for Business 2019. However, this vulnerability is noted to have been publicly disclosed previously.

Windows

Windows Software Review Azure Systems Review

Behind the Scenes: How We Picked 2021’s Top Vulnerabilities – and What We Left Out

Tenable

MARCH 11, 2022

Pulse Connect Secure authentication bypass. This blog post was published on March 13, 2022 and reflects VPR at that time. Somewhat unique on this list is PetitPotam, which is a new technology LAN manager (NTLM) relay attack rather than a distinct vulnerability. CVE-2021-34527. Windows Print Spooler remote code execution.

Windows

Windows Groups LAN Authentication

Ivanti Product Update - October 2022

Ivanti

OCTOBER 25, 2022

Bandwidth utilization in the Agent Policy manages network performance by allowing users to set the percentage of WAN/LAN bandwidth to be used when downloading patch content packages from Ivanti Neurons. Enabled default domains and remote authentication. Enabled default domains and remote authentication. iOS/iPadOS 16/macOS 13.

Software Review

Software Review Windows Systems Review Development Team Review

CTO Universe

Microsoft’s May 2022 Patch Tuesday Addresses 73 CVEs (CVE-2022-26925)

Microsoft’s February 2025 Patch Tuesday Addresses 55 CVEs (CVE-2025-21418, CVE-2025-21391)

Webinars

Trending Sources

Hybrid working: network managers need to take care of unfinished business

Webinars

Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs (CVE-2024-21351, CVE-2024-21412)

Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)

It's 2022. Why do you keep using SMB?

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

Microsoft’s October 2023 Patch Tuesday Addresses 103 CVEs (CVE-2023-36563, CVE-2023-41763)

Behind the Scenes: How We Picked 2021’s Top Vulnerabilities – and What We Left Out

Ivanti Product Update - October 2022

Stay Connected