Security News > 2019 > September > September 2019 Patch Tuesday: Microsoft plugs two actively exploited zero-days

September 2019 Patch Tuesday: Microsoft plugs two actively exploited zero-days
2019-09-11 09:08

For the September 2019 Patch Tuesday, Microsoft delivered fixes for 80 CVE-numbered security issues (including to actively exploited zero-days), Adobe fixed flaws in Flash Player and Application Manager, and Intel offered solutions and mitigations for two security holes, one of which could allow a side-channel attack aimed at acquiring sensitive data (e.g., keystrokes in a SSH session). Microsoft’s patches Let’s start with the zero-days exploited in the wild. CVE-2019-1214 is an elevation of privilege vulnerability … More → The post September 2019 Patch Tuesday: Microsoft plugs two actively exploited zero-days appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/BvJnQdfTEFw/

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2019-09-11 CVE-2019-1214 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
7.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2819 161 4399