GCN

Microsoft Patch Tuesday fixes 86 flaws, two zero-days

Microsoft has already issued security patches to cover 81 vulnerabilities affecting Windows, Office, SQL Server, and other Microsoft-based products, including two zero-day holes known publicly, with ...
Redmond Magazine

Microsoft July Patch Tuesday: 137 Bugs, 1 Zero-Day SQL Flaw

This month's Patch Tuesday is here, packed with 137 vulnerability fixes, including 14 rated critical and one publicly disclosed zero-day affecting Microsoft SQL Server. The zero-day flaw fix (CVE-2025 ...
Dark Reading

Microsoft Patch Tuesday Tsunami: No Zero-Days, but an Asterisk

Microsoft outdid itself with this month's Patch Tuesday releases, which contain no zero-day patches, though at least one of the patches addresses a flaw already being actively exploited. Products ...
Bleeping Computer

CISA urges software devs to weed out SQL injection vulnerabilities

CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security ...
Dark Reading

Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability

A critical vulnerability in the Cacti Web-based open source framework for monitoring network performance gives attackers a way to disclose Cacti's entire database contents — presenting a prickly risk ...
Network World

Experts say beast hiding in Microsoft Patch Tuesday vulnerability

Microsoft’s Patch Tuesday dropped in on 2009 with a whisper revealing only a single patch covering three vulnerabilities with the Windows operating system’s Server Message Block Protocol. But it is ...