all InfoSec news
Microsoft fixes actively exploited zero-day reported by the NSA (CVE-2022-24521)
Help Net Security www.helpnetsecurity.com
On this April 2022 Patch Tuesday, Microsoft has released patches for 128 CVE-numbered vulnerabilities, including one zero-day exploited in the wild (CVE-2022-24521) and another (CVE-2022-26904) for which there’s already a PoC and a Metasploit module. Vulnerabilities of note CVE-2022-24521 is a vulnerability in the Windows Common Log File System Driver that was reported to Microsoft by the National Security Agency (NSA) and Adam Podlosky and Amir Bazine of Crowdstrike. “Since CVE-2022-24521 only allows a privilege … More →
The post …
0 day crowdstrike cve don't miss featured news fixes metasploit microsoft nsa patching patch tuesday security update tenable trend micro virsec