Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/screaminggoat/statuses/113986583418117641">screaminggoat (screaminggoat@infosec.exchange)'s status on Thursday, 13-Feb-2025 03:41:57 JST</a><a href="https://infosec.exchange/@screaminggoat" title="screaminggoat@infosec.exchange"><img src="https://gnusocial.jp/avatar/278335-48-20250102170004.webp" width="48" height="48" alt="screaminggoat" style="position: absolute; left: 0; top: 0;">screaminggoat</a><div><a href="https://infosec.exchange/@screaminggoat/113986497919466758" rel="in-reply-to">in reply to</a></div></section><article><p>Happy <a href="https://infosec.exchange/tags/PatchTuesday" rel="tag">#PatchTuesday</a> from Microsoft: 4 ZERO-DAYS (2 EXPLOITED) out of 56 new CVEs</p><ul><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21377" rel="nofollow">CVE-2025-21377</a> (6.5 medium) NTLM Hash Disclosure Spoofing Vulnerability (PUBLICLY DISCLOSED)</li><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21194" rel="nofollow">CVE-2025-21194</a> (7.1 high) Microsoft Surface Security Feature Bypass Vulnerability (PUBLICLY DISCLOSED)</li><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21418" rel="nofollow">CVE-2025-21418</a> (7.8 high) Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (EXPLOITED)</li><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21391" rel="nofollow">CVE-2025-21391</a> (7.1 high) Windows Storage Elevation of Privilege Vulnerability (EXPLOITED)</li></ul><p><a href="https://infosec.exchange/tags/microsoft" rel="tag">#microsoft</a> <a href="https://infosec.exchange/tags/zeroday" rel="tag">#zeroday</a> <a href="https://infosec.exchange/tags/cve" rel="tag">#cve</a> <a href="https://infosec.exchange/tags/eitw" rel="tag">#eitw</a> <a href="https://infosec.exchange/tags/activeexploitation" rel="tag">#activeexploitation</a> <a href="https://infosec.exchange/tags/vulnerability" rel="tag">#vulnerability</a> <a href="https://infosec.exchange/tags/infosec" rel="tag">#infosec</a> <a href="https://infosec.exchange/tags/cybersecurity" rel="tag">#cybersecurity</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4554181#notice-8915712">In conversation</a><time datetime="2025-02-13T03:41:57+09:00" title="Thursday, 13-Feb-2025 03:41:57 JST">about 19 days ago</time> <span>from <span><a href="https://infosec.exchange/@screaminggoat/113986583418117641" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@screaminggoat/113986583418117641">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
screaminggoat (screaminggoat@infosec.exchange)'s status on Thursday, 13-Feb-2025 03:41:57 JST screaminggoat
in reply to
Happy #PatchTuesday from Microsoft: 4 ZERO-DAYS (2 EXPLOITED) out of 56 new CVEs
- CVE-2025-21377 (6.5 medium) NTLM Hash Disclosure Spoofing Vulnerability (PUBLICLY DISCLOSED)
- CVE-2025-21194 (7.1 high) Microsoft Surface Security Feature Bypass Vulnerability (PUBLICLY DISCLOSED)
- CVE-2025-21418 (7.8 high) Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (EXPLOITED)
- CVE-2025-21391 (7.1 high) Windows Storage Elevation of Privilege Vulnerability (EXPLOITED)
#microsoft #zeroday #cve #eitw #activeexploitation #vulnerability #infosec #cybersecurity
In conversationabout 19 days ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice