Remove Internet Remove LAN Remove Windows
article thumbnail

Microsoft’s February 2024 Patch Tuesday Addresses 73 CVEs (CVE-2024-21351, CVE-2024-21412)

Tenable

Moderate CVE-2024-21351 | Windows SmartScreen Security Feature Bypass Vulnerability CVE-2024-21351 is a security feature bypass vulnerability in Windows SmartScreen. Since 2022, there have been five Windows SmartScreen vulnerabilities disclosed across Patch Tuesday. It was assigned a CVSSv3 score of 7.6 and is rated moderate.

LAN 127
article thumbnail

Microsoft’s September 2023 Patch Tuesday Addresses 61 CVEs (CVE-2023-36761)

Tenable

Successful exploitation of this flaw would allow for the disclosure of New Technology LAN Manager (NTLM) hashes. Successful exploitation of these vulnerabilities requires an attacker to authenticate with LAN-access and have valid credentials for an Exchange user. Each of these vulnerabilities were given CVSSv3 scores of 8.0

LAN 122
article thumbnail

Microsoft’s August 2024 Patch Tuesday Addresses 88 CVEs

Tenable

Important CVE-2024-38106, CVE-2024-38133 and CVE-2024-38153 | Windows Kernel Elevation of Privilege Vulnerability CVE-2024-38106 , CVE-2024-38133 and CVE-2024-38153 are EoP vulnerabilities affecting the Windows Kernel. for this vulnerability and patches are available for all supported versions of Windows and Windows Server.

IPv6 125
article thumbnail

CVE-2020-1472: 'Zerologon' Vulnerability in Netlogon Could Allow Attackers to Hijack Windows Domain Controller

Tenable

Security researchers reveal how the cryptographic authentication scheme in Netlogon can be exploited to take control of a Windows domain controller (DC). Further attacks are then possible, including the complete takeover of a Windows domain. A vulnerable client or DC exposed to the internet is not exploitable by itself.

Windows 117
article thumbnail

How to Develop IoT Applications: A Complete Guide for 2022

The Crazy Programmer

The window blinds automatically spread open to let nature’s morning light into your room as you get up. People create IoT applications; people use IoT applications—the world’s technology grows from the internet to the Internet of Things, from middlemen transaction processes to Smart Contracts.

IoT 253
article thumbnail

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

Tenable

Windows ALPC. Windows Ancillary Function Driver for WinSock. Windows Authentication Methods. Windows Backup Engine. Windows Bind Filter Driver. Windows BitLocker. Windows Boot Manager. Windows Credential Manager. Windows Cryptographic Services. Windows DWM Core Library.

Windows 100
article thumbnail

CVE-2020-0796: "Wormable" Remote Code Execution Vulnerability in Microsoft Server Message Block SMBv3 (ADV200005)

Tenable

The following versions of Microsoft Windows and Windows Server are affected. Windows Server. Windows Server. Windows 10. Windows 10. Windows 10. Windows 10. Windows 10. Windows 10. Version 1903 (Server Core Installation). Version 1909 (Server Core Installation).