Chocolatey Boxstarter is vulnerable to privilege escalation due to weak ACLs [CVE-2020-15264]

CVE Number = CVE-2020-15264 Chocolatey Boxstarter fails to properly set ACLs, which can allow an unprivileged Windows user to be

Read more

Replay Attack Vulnerabilities in RPMB Protocol Applications [CVE-2020-13799]

Western Digital has identified a security vulnerability in the Replay Protected Memory Block (RPMB) protocol as specified in multiple standards

Read more

Google disclosed Windows zero-day (CVE-2020-17087) vulnerability

Google has disclosed details of a new zero-day privilege escalation flaw in the Microsoft Windows operating system that it says

Read more

VMware Security Advisory’s October 2020 [VMSA-2020-0023]

VMware has published security advisory VMSA-2020-0023 addressing vulnerabilities in VMware ESXi, Workstation, Fusion, NSX-T, and Cloud Foundation. Overview VMware has

Read more

Visual Studio JSON Remote Code Execution Vulnerability [CVE-2020-17023]

CVE number – CVE-2020-17023 A remote code execution vulnerability exists in Visual Studio Code when a user is tricked into

Read more

Microsoft Windows Codecs Library Remote Code Execution Vulnerability [CVE-2020-17022]

CVE number – CVE-2020-17022 A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects

Read more

Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability [CVE-2020-3535]

CVE number – CVE-2020-3535 A vulnerability in the loading mechanism of specific DLLs in the Cisco Webex Teams client for Windows could allow an authenticated,

Read more

Cisco Aironet Access Points Ethernet Wired Clients Denial of Service Vulnerability [CVE-2020-3552]

CVE Number – CVE-2020-3552 A vulnerability in the Ethernet packet handling of Cisco Aironet Access Points (APs) Software could allow an

Read more

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability [CVE-2020-1341]

CVE number – CVE-2020-1341 An elevation of privilege vulnerability exists in Microsoft Edge (Chromium-based) when DLL files are allowed to

Read more

Microsoft Netlogon Elevation of Privilege Vulnerability [CVE-2020-1472]

CVE number – CVE-2020-1472 An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection

Read more
%d bloggers like this: