Microsoft’s Patch Tuesday: 100+ Updates Including Azure OpenAI Service, Memory Corruption Flaw

Threat Score:
48
Techrepublic
1 day ago
Microsoft’s Patch Tuesday: 100+ Updates Including Azure OpenAI Service, Memory Corruption Flaw

Overview

Microsoft on Aug. 12 released security updates addressing more than 100 vulnerabilities across its products, including 13 rated critical. The patches include fixes for a graphics component flaw described as “extremely high-risk” and a maximum-severity vulnerability in Azure’s OpenAI service. “This month’s release highlights an upward trend in post-compromise vulnerabilities over code execution bugs,” wrote Satnam Narang, senior staff research engineer, Tenable, in an email to TechRepublic. “For ...

Related Articles

5 articles
1

CISA Warns N-able Bugs Under Attack, Patch Now

Dark Reading 7 hours ago

Two critical N-able vulnerabilities enable local code execution and command injection; they require authentication to exploit, suggesting they wouldn't be seen at the beginning of an exploit chain.

Score
86
Read more
3

US Sanctions Crypto Exchange Tied to Russian Ransomware

Data Breach Today UK 2 hours ago

US Treasury Says Crypto Exchange Helped Launder $100 Million for Ransomware Gangs The U.S. Department of Treasury sanctioned Thursday a Russian founder and co-owners of the Garantex cryptocurrency exchange in a bid to tighten methods criminal hackers use to launder extortion money and Kremlin sanctions busting. Regulators also sanctioned Garantex successor Grinex.

Score
82
Read more
4

Norway confirms dam intrusion by Pro-Russian hackers

Security Affairs 8 hours ago

Norway’s security service PST says pro-Russian hackers took over a dam in April, opening outflow valves. Norway’s Police Security Service (PST) says pro-Russian hackers seized control of a dam’s systems in April, opening outflow valves. On April 7, the attackers took control of a dam in Bremanger, western Norway, opening a flood gate to release […]

Score
81
Read more
5

Multiple ZTNA Products Authentication Bypass

FortiGuard Threat Signal 1 hour ago

Threat Signal Report Multiple ZTNA Products Authentication Bypass Description What is the Vulnerability? A series of critical vulnerabilities affecting leading zero trust platforms - Zscaler, Netskope, and Check Point (Perimeter 81) - have been disclosed following a seven-month research campaign by security researchers David Cash and Richard Warren. These flaws include authentication bypasses, privilege escalation, and hardcoded credentials, significantly weakening the core security assumptions

Score
80
Read more