Microsoft Exploit
Monthly Patches have been published, with 96 vulnerabilities. 13 patches are rated as Critical, 71 as Important and 1 as Moderate. There is no patch for the current Exchange vulnerability. One vulnerability, a Windows COM+ Event System Service Elevation of Privilege Vulnerability, is already being exploited. A Microsoft Office Information Disclosure Vulnerability, was made public before the patch was released. Highest CVSSv3 score of 10.
More info. And here. And here.
A vulnerability exists affecting the cluster connect feature of Azure Arc-enabled Kubernetes clusters. This vulnerability could allow an unauthenticated remote attacker to gain administrative control over the Kubernetes cluster. CVSSv3 score of 10.
More info.
Comments