Kategorie: Allgemein

Information published.

Das in der Nacht zum Donnerstag veröffentlichte Chrome-Update schließt 26 Sicherheitslücken, darunter drei kritische.

Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.

Insufficiently protected credentials in Azure DevOps allows an unauthorized attacker to elevate privileges over a network.

Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network.

Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.

Improper neutralization of special elements used in an os command (‚os command injection‘) in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

Improper neutralization of special elements used in a command (‚command injection‘) in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

Improper neutralization of special elements used in a command (‚command injection‘) in Microsoft Copilot allows an unauthorized attacker to disclose information over a network.

Server-side request forgery (ssrf) in Azure Cloud Shell allows an unauthorized attacker to elevate privileges over a network.