Med-Mastodon

cR0w :cascadia:PAN also missed <a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a> by a day. There's yet another LPE in GlobalProtect and yet another vuln to disable it.<a href="https://security.paloaltonetworks.com/" rel="nofollow noopener" translate="no" target="_blank">https://security.paloaltonetworks.com/</a>

BillWait a minute, weren't all you threat people saying that this patch Tuesday was a bummer? Since when in an 0day a bummer?<a href="https://securityaffairs.com/179738/security/microsoft-patch-tuesday-security-updates-for-july-2025-fixed-a-zero-day.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/179738/security/microsoft-patch-tuesday-security-updates-for-july-2025-fixed-a-zero-day.html</a><a href="https://infosec.exchange/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://infosec.exchange/tags/patchtuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchtuesday</a>

cR0w :cascadia:Three new advisories in git.<a href="https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9" rel="nofollow noopener" translate="no" target="_blank">https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9</a><code>sev:HIGH 8.1 - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H</code><blockquote>When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout.</blockquote><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-48384" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-48384</a><a href="https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655" rel="nofollow noopener" translate="no" target="_blank">https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655</a><code>sev:HIGH 8.6 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N</code><blockquote>When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.This protocol injection can cause the client to write the fetched bundle to a location controlled by the adversary. The fetched content is fully controlled by the server, which can in the worst case lead to arbitrary code execution.</blockquote><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-48385" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-48385</a><a href="https://github.com/git/git/security/advisories/GHSA-4v56-3xvj-xvfr" rel="nofollow noopener" translate="no" target="_blank">https://github.com/git/git/security/advisories/GHSA-4v56-3xvj-xvfr</a><code>sev:MED 6.3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N</code><blockquote>The wincred credential helper uses a static buffer (<code>target</code>) as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending to it with <code>wcsncat()</code>, leading to potential buffer overflows.</blockquote><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-48386" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-48386</a><a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a>

cR0w :cascadia:11 <code>sev:CRIT</code> RCEs though. So maybe <a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a> isn't that much fun, but <a href="https://infosec.exchange/tags/exploitWednesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#exploitWednesday</a> should be.

cR0w :cascadia:Only one publicly disclosed Microsoft vuln and none EITW?! Huh.<a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a>

cR0w :cascadia:Fortinet published their July advisories. Nothing huge stands out but they always have some weird shit.<a href="https://www.fortiguard.com/psirt" rel="nofollow noopener" translate="no" target="_blank">https://www.fortiguard.com/psirt</a>For example:<a href="https://www.fortiguard.com/psirt/FG-IR-24-053" rel="nofollow noopener" translate="no" target="_blank">https://www.fortiguard.com/psirt/FG-IR-24-053</a><blockquote>An Improperly Implemented Security Check for Standard vulnerability [CWE-358] in FortiOS and FortiProxy may allow a remote unauthenticated user to bypass the DNS filter via Apple devices.</blockquote>and<a href="https://www.fortiguard.com/psirt/FG-IR-24-035" rel="nofollow noopener" translate="no" target="_blank">https://www.fortiguard.com/psirt/FG-IR-24-035</a><blockquote>An insufficient session expiration vulnerability [CWE-613] in FortiSandbox & FortiIsolator may allow a remote attacker in possession of an admin session cookie to keep using that admin's session even after the admin user was deleted.</blockquote><a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a>

cR0w :cascadia:Dell published a BIOS security advisory.<a href="https://www.dell.com/support/kbdoc/en-us/000320876/dsa-2025-205" rel="nofollow noopener" translate="no" target="_blank">https://www.dell.com/support/kbdoc/en-us/000320876/dsa-2025-205</a><code>sev:HIGH 8.2 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H</code><blockquote>Dell Client Platform BIOS contains an Improper Access Control Applied to Mirrored or Aliased Memory Regions vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.</blockquote><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-36600" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-36600</a><a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a>

cR0w :cascadia:MediaTek published their <a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a> advisory with seven <code>sev:HIGH</code> CVEs.<a href="https://corp.mediatek.com/product-security-bulletin/July-2025" rel="nofollow noopener" translate="no" target="_blank">https://corp.mediatek.com/product-security-bulletin/July-2025</a>

cR0w :cascadia:Fucking Ivanti. What, do they think they're Cisco or something?<a href="https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Workspace-Control-CVE-2025-5353-CVE-CVE-2025-22463-CVE-2025-22455" rel="nofollow noopener" translate="no" target="_blank">https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Workspace-Control-CVE-2025-5353-CVE-CVE-2025-22463-CVE-2025-22455</a><code>sev:HIGH 8.8 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H</code><blockquote>A hardcoded key in Ivanti Workspace Control before version 10.19.10.0 allows a local authenticated attacker to decrypt stored SQL credentials.sev:HIGH 7.3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L`</blockquote>A hardcoded key in Ivanti Workspace Control before version 10.19.10.0 allows a local authenticated attacker to decrypt the stored environment password. <code>sev:HIGH 8.8 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H</code><blockquote>A hardcoded key in Ivanti Workspace Control before version 10.19.0.0 allows a local authenticated attacker to decrypt stored SQL credentials.</blockquote><a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a>

CybersecKyleFrom yesterday:Microsoft's Patch Tuesday in May 2025 addresses 5 zero-day vulnerabilities and resolves 72 issues.<a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#Microsoft</a> <a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchTuesday</a><a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-may-2025-patch-tuesday-fixes-5-exploited-zero-days-72-flaws/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/microsoft/microsoft-may-2025-patch-tuesday-fixes-5-exploited-zero-days-72-flaws/</a>

Crazypedia⍼ :verified_pride:Oh fuck me. It's a <a href="https://masto.hackers.town/tags/FullMoon" class="mention hashtag" rel="nofollow noopener" target="_blank">#FullMoon</a> on a <a href="https://masto.hackers.town/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchTuesday</a> Any superstitious <a href="https://masto.hackers.town/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#sysadmin</a> about? 😅

Xavier «X» Santolaria :verified_paw: :donor:📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> list of resources for week #15/2025 is out!It includes the following and much more:🇺🇸 The U.S. Department of Justice has disbanded its National <a href="https://infosec.exchange/tags/Cryptocurrency" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cryptocurrency</a> Enforcement Unit;🇳🇱 To tackle <a href="https://infosec.exchange/tags/espionage" class="mention hashtag" rel="nofollow noopener" target="_blank">#espionage</a>, Dutch government plans to screen university students and researchers;🐛 Another busy <a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchTuesday</a>;🐛 <a href="https://infosec.exchange/tags/NIST" class="mention hashtag" rel="nofollow noopener" target="_blank">#NIST</a> will mark all CVEs published before January 1, 2018, as 'Deferred';🇺🇸 Trump Signs Memorandum Revoking Security Clearance of Former <a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> Director Chris Krebs;🇨🇳 <a href="https://infosec.exchange/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#China</a> Admitted to Volt Typhoon <a href="https://infosec.exchange/tags/Cyberattacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberattacks</a> on US Critical Infrastructure;Subscribe to the <a href="https://infosec.exchange/tags/infosecMASHUP" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosecMASHUP</a> newsletter to have it piping hot in your inbox every week-end ⬇️<a href="https://infosec-mashup.santolaria.net/p/infosec-mashup-15-2025" rel="nofollow noopener" translate="no" target="_blank">https://infosec-mashup.santolaria.net/p/infosec-mashup-15-2025</a>

TechHelpKB.com 📚Today is Microsoft's Patch Tuesday, which includes security updates for 134 flaws, including one actively exploited zero-day vulnerability, and fixes for eleven "Critical" remote code execution vulnerabilities.<a href="https://mastodon.social/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://mastodon.social/tags/patchtuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchtuesday</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/update" class="mention hashtag" rel="nofollow noopener" target="_blank">#update</a> <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2025-patch-tuesday-fixes-exploited-zero-day-134-flaws/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2025-patch-tuesday-fixes-exploited-zero-day-134-flaws/</a>

Zeljka ZorzApril 2025 Patch Tuesday is here, and Microsoft has delivered fixes for 120+ vulnerabilities, including a zero-day that's under active attack.<a href="https://www.helpnetsecurity.com/2025/04/08/patch-tuesday-microsoft-zero-day-cve-2025-29824/" rel="nofollow noopener" translate="no" target="_blank">https://www.helpnetsecurity.com/2025/04/08/patch-tuesday-microsoft-zero-day-cve-2025-29824/</a><a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchTuesday</a>

Xavier «X» Santolaria :verified_paw: :donor:📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> list of resources for week #11/2025 is out!It includes the following and much more:➝ Alleged Co-Founder of <a href="https://infosec.exchange/tags/Garantex" class="mention hashtag" rel="nofollow noopener" target="_blank">#Garantex</a> Arrested in India;➝ X Suffered a <a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DDoS</a> Attack;➝ Microsoft <a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchTuesday</a> Fixes 7 Zero-days;➝ UK Hospital Discovered 5,000 to 10,000 Unknown Devices Connected to its Network;➝ <a href="https://infosec.exchange/tags/NVIDIA" class="mention hashtag" rel="nofollow noopener" target="_blank">#NVIDIA</a> Chips Smugglers Granted Bail in Singapore;➝ <a href="https://infosec.exchange/tags/Tenable" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tenable</a> tested <a href="https://infosec.exchange/tags/DeepSeek" class="mention hashtag" rel="nofollow noopener" target="_blank">#DeepSeek</a>'s Ability to Generate <a href="https://infosec.exchange/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a>;➝ <a href="https://infosec.exchange/tags/OpenAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenAI</a> labelling DeepSeek as "state-controlled";➝ New <a href="https://infosec.exchange/tags/Jailbreak" class="mention hashtag" rel="nofollow noopener" target="_blank">#Jailbreak</a> Method called Context Compliance Attack (CCA) Works Against Most <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> ModelsSubscribe to the <a href="https://infosec.exchange/tags/infosecMASHUP" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosecMASHUP</a> newsletter to have it piping hot in your inbox every week-end ⬇️<a href="https://infosec-mashup.santolaria.net/p/template-infosec-mashup-xx-2025-7eb9e43f2aebd47f?utm_source=beehiiv&utm_medium=mastodon" rel="nofollow noopener" translate="no" target="_blank">https://infosec-mashup.santolaria.net/p/template-infosec-mashup-xx-2025-7eb9e43f2aebd47f?utm_source=beehiiv&utm_medium=mastodon</a>

TechHelpKB.com 📚If you’re running a Windows 10 PC, make sure you download the latest update right now. This month’s Patch Tuesday update fixes six actively exploited vulnerabilities that could affect up to 240 million people.<a href="https://mastodon.social/tags/windows10" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows10</a> <a href="https://mastodon.social/tags/update" class="mention hashtag" rel="nofollow noopener" target="_blank">#update</a> <a href="https://mastodon.social/tags/patchtuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchtuesday</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://www.tomsguide.com/computing/online-security/240-million-windows-users-under-attack-update-your-pc-now-before-hackers-strike" rel="nofollow noopener" translate="no" target="_blank">https://www.tomsguide.com/computing/online-security/240-million-windows-users-under-attack-update-your-pc-now-before-hackers-strike</a>

TechHelpKB.com 📚Microsoft released security updates yesterday to address 57 security vulnerabilities in its software, including a whopping six zero-days that it said have been actively exploited in the wild.<a href="https://mastodon.social/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://mastodon.social/tags/patchtuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchtuesday</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/0day" class="mention hashtag" rel="nofollow noopener" target="_blank">#0day</a> <a href="https://thehackernews.com/2025/03/urgent-microsoft-patches-57-security.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/03/urgent-microsoft-patches-57-security.html</a>

RF Wave<a href="https://mstdn.ca/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#Microsoft</a> has released software updates as part of its March 2025 <a href="https://mstdn.ca/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#PatchTuesday</a>The updates fix 57 security vulnerabilities in total, including 6 zero-day vulnerabilities that are being actively exploitedAdministrators are advised to test and patch ASAP, prioritizing the actively exploited zero-days<a href="https://mstdn.ca/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mstdn.ca/tags/vulnerabilitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilitymanagement</a><a href="https://rfwave.io/blog/microsoft-mar2025-patch-tuesday" rel="nofollow noopener" translate="no" target="_blank">https://rfwave.io/blog/microsoft-mar2025-patch-tuesday</a>

TechHelpKB.com 📚Microsoft has released Windows 11 Patch Tuesday cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues discovered in previous months.<a href="https://mastodon.social/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://mastodon.social/tags/windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows11</a> <a href="https://mastodon.social/tags/patchtuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchtuesday</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/update" class="mention hashtag" rel="nofollow noopener" target="_blank">#update</a> <a href="https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5053598-and-kb5053602-cumulative-updates-released/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5053598-and-kb5053602-cumulative-updates-released/</a>

ajk 🫥<a href="https://infosec.exchange/tags/patchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#patchTuesday</a> meets <a href="https://infosec.exchange/tags/tacoTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#tacoTuesday</a> cc: <a href="https://infosec.exchange/@cR0w" class="u-url mention" rel="nofollow noopener" target="_blank">@cR0w</a>

Recent searches

Search options

Administered by:

Server stats:

#patchtuesday