#windows

Windows Media Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-44667.

Windows Media Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-44668.

Windows Bluetooth Driver Information Disclosure Vulnerability.

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-44679.

Windows Hyper-V Elevation of Privilege Vulnerability.

Windows Fax Compose Form Elevation of Privilege Vulnerability.

Windows Graphics Component Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-44671, CVE-2022-44680, CVE-2022-44697.

Microsoft released its monthly security update on Tuesday, disclosing 48 vulnerabilities. Of these vulnerabilities, 6 are classified as “Critical”, 41 are classified as “Important”, with the remaining vulnerability classified as “Moderate.”

The pgAdmin server includes an HTTP API that is intended to be used to validate the path a user selects to external PostgreSQL utilities such as pg_dump and pg_restore. The utility is executed by the server to determine what PostgreSQL version it is from. Versions of pgAdmin prior to 6.17 failed to properly secure this API, which could allow an unauthenticated user to call it with a path of their choosing, such as a UNC path to a server they control on a Windows machine. This would cause an appropriately named executable in the target path to be executed by the pgAdmin server.

By Waqas Another day, another data breach at Uber - This time around, a hacker has leaked stolen data on a prominent cybercrime and hacking forum. This is a post from HackRead.com Read the original post: New Uber Data Breach – Hacker Leaks Employee and Other Sensitive Data