all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PoC Released For Critical Zero-Click Windows Vulnerability

Add to bookmarks
April 15, 2024, 2 p.m. | Tushar Subhra Dutta

Cyber Security News cybersecuritynews.com

Microsoft’s wide reach as a target prompted attackers to carry out intensive studies on the vulnerabilities and mitigation tools of their products and protocols.  This resulted in a new remote code execution (RCE) WinAPI CreateUri function vulnerability, introduced as part of the CVE-2023-23397 patch. Unlike the previous two-vulnerability RCE chain, this flaw enables zero-click RCE […]


The post PoC Released For Critical Zero-Click Windows Vulnerability appeared first on Cyber Security News.

attackers click code code execution critical cve cve-2023-23397 cyber security cyber-security-research flaw function microsoft mitigation patch poc products protocols rce remote code remote code execution studies target tools vulnerabilities vulnerability winapi windows windows vulnerability zero-click zero-click exploit

Visit resource

More from cybersecuritynews.com / Cyber Security News

Hackers Infiltrated 9-days Within UnitedHealth Network Before Ransomware Attack 11 hours ago | cybersecuritynews.com
alphv attack blackcat breach +21
Malware Cuckoo – Previously Unknown Infosteler Spyware Steals Data From MacOS 11 hours ago | cybersecuritynews.com
april bird code cuckoo +16
Postman API Testing Platform Flaw Exposes Sensitive Credentials 14 hours ago | cybersecuritynews.com
api api testing credentials cyber security +19
Millions of Docker Hub Repositories Found Pushing Malware for Over 5 Years 15 hours ago | cybersecuritynews.com
access applications cyber security developers +19
Investigating Two TeamCity Authentication Bypass Vulnerabilities 1 day, 3 hours ago | cybersecuritynews.com
access account account takeovers array +29
Threat Actors Claiming of 0-Day Vulnerability in Zyxel VPN Device 1 day, 5 hours ago | cybersecuritynews.com
0-day vulnerability access attackers claim +18
Muddling Meerkat Using DNS As A Powerful Weapon For Sophistication 1 day, 6 hours ago | cybersecuritynews.com
actor attacks china chinese +32
Pathfinder – New Attack Steals Sensitive Data From Modern Processors 1 day, 7 hours ago | cybersecuritynews.com
analysts attack attacks building +25
Beware of New Android Trojan That Executes Malicious Commands on Your Phone 1 day, 7 hours ago | cybersecuritynews.com
android android malware android trojan backdoor +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

EY- GDS- Cybersecurity- Staff

@ EY | Miguel Hidalgo, MX, 11520
View on infosec-jobs.com

Staff Security Operations Engineer

@ Workiva | Ames
View on infosec-jobs.com

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

@ Highwire Public Relations | Los Angeles, CA
View on infosec-jobs.com

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

@ Airbus | Mirabel
View on infosec-jobs.com

Investigations (OSINT) Manager

@ Logically | India
View on infosec-jobs.com

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, NY, Virtual Location - New York
View on infosec-jobs.com
View more jobs