ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges
A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed "RedSun," in the past two weeks, protesting how the company works with cybersecurity resea
Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise
The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North Korean threat actor Sapphire Sleet that abuses user driven execution and social engineering to bypa
Windows Active Directory Vulnerability Allow Attackers to Execute Malicious Code
Microsoft has released urgent security updates to address a critical vulnerability in Windows Active Directory that allows attackers to execute malicious code. Disclosed on April 14, 2026, the vulnerability poses a signi
April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More
A number of critical vulnerabilities impacting products from Adobe, Fortinet, Microsoft, and SAP have taken center stage in April's Patch Tuesday releases. Topping the list is an SQL injection vulnerability impacting SAP
Windows BitLocker Vulnerability Allows Attacker to Bypass Security Feature
Microsoft officially released security updates to address a significant vulnerability in Windows BitLocker. Tracked as CVE-2026-27913, this security feature bypass vulnerability was discovered by security researcher Alon
Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities
Microsoft on Tuesday released updates to address a record 169 security flaws across its product portfolio, including one vulnerability that has been actively exploited in the wild. Of these 169 vulnerabilities, 157 are r
Microsoft Patchday April 2026
Microsoft hat im April zahlreiche Schwachstellen in verschiedenen Produkten behoben.
Microsoft Defender 0-Day Vulnerability Enables Privilege Escalation Attack
Microsoft has released patch Tuesday security updates to address a newly discovered zero-day vulnerability in the Microsoft Defender Antimalware Platform. Disclosed on April 14, 2026, the flaw is tracked as CVE-2026-33
165 CVEs, aktive SharePoint-Attacke und zwei Wurm-Kandidaten
Microsoft presst im April 2026 ganze 165 neue CVEs in seinen Patchday. Acht davon sind kritisch. Angreifer nutzen eine SharePoint-Sicherheitslücke bereits aus, ein Defender-Fehler gilt als öffentlich bekannt. Zählt man
Microsoft Patch Tuesday for April 2026 fixed actively exploited SharePoint zero-day
Microsoft Patch Tuesday security updates for April 2026 fixed 165 vulnerabilities, including an actively exploited SharePoint zero-day. Microsoft Patch Tuesday security updates addressed 165 vulnerabilities, making it on
Microsoft SharePoint Server 0-Day Vulnerability Actively Exploited in Attacks
A critical zero-day spoofing vulnerability in Microsoft SharePoint Server is being actively exploited in the wild, Microsoft confirmed on April 14, 2026, as part of its monthly security update cycle. Tracked as CVE-2026-
Patch Tuesday, April 2026 Edition
Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-day and a publicly disclosed weakness in
CVE-2026-33120 - Microsoft SQL Server Remote Code Execution Vulnerability
CVE ID :CVE-2026-33120 Published : April 14, 2026, 6:17 p.m. | 22 minutes ago Description :Untrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network. Severity: 8.8
CVE-2026-33115 - Microsoft Word Remote Code Execution Vulnerability
CVE ID :CVE-2026-33115 Published : April 14, 2026, 6:17 p.m. | 22 minutes ago Description :Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. Severity: 8.4 | HIGH
CVE-2026-32221 - Windows Graphics Component Remote Code Execution Vulnerability
CVE ID :CVE-2026-32221 Published : April 14, 2026, 6:17 p.m. | 22 minutes ago Description :Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code locally. Seve
CVE-2026-32190 - Microsoft Office Remote Code Execution Vulnerability
CVE ID :CVE-2026-32190 Published : April 14, 2026, 6:17 p.m. | 23 minutes ago Description :Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Severity: 8.4 | HIGH Vi
CVE-2026-32091 - Microsoft Brokering File System Elevation of Privilege Vulnerability
CVE ID :CVE-2026-32091 Published : April 14, 2026, 6:17 p.m. | 23 minutes ago Description :Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File Sys
CVE-2026-26149 - Microsoft Power Apps Security Feature Bypass
CVE ID :CVE-2026-26149 Published : April 14, 2026, 6:16 p.m. | 23 minutes ago Description :Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an authorized attacker to bypa
April Patch Tuesday brings zero-days in Defender, SharePoint Server
<p>The latest monthly <a href="https://www.techtarget.com/searchsecurity/definition/Patch-Tuesday" target="_blank" rel="noopener">Patch Tuesday</a> update from Microsoft landed earlier on 14 April, including two notable
CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulne