Security News > 2018 > August > August 2018 Patch Tuesday: Microsoft fixes two actively exploited zero-days

August 2018 Patch Tuesday: Microsoft fixes two actively exploited zero-days
2018-08-15 14:46

In the August 2018 Patch Tuesday, Microsoft has plugged over 60 vulnerabilities, two of which are being actively exploited in the wild. In addition to those, the company has also released a critical update advisory that addresses vulnerabilities found and patched in Adobe Flash. Exploited zero-days The two patched zero-days are: CVE-2018-8414 – A vulnerability in Windows Shell that can be triggered by a user opening a specially crafted file and could allow the attacker … More → The post August 2018 Patch Tuesday: Microsoft fixes two actively exploited zero-days appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/KJISm-XN1FQ/

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2018-08-15 CVE-2018-8414 Improper Input Validation vulnerability in Microsoft products
A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
network
low complexity
microsoft CWE-20
8.8
8.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 383 52 1433 2959 181 4625