“STAY UPDATED”
CVE Updates for the month of November 2020:
Microsoft released today its monthly roll-up of security patches known as Patch Tuesday. This month they fixed 58 security bugs across a wide range of products, from Microsoft Edge to the Windows WalletService.
This month’s patches also include a fix for a Windows zero-day vulnerability that was exploited in the wild.
Continuous vulnerability management and cyber hygiene can fend off the majority of cyber-attacks. Stay secure by updating patches and fix your vulnerabilities before they take over your system.
Remote code execution – 24
Critical – 17
- CVE-2020-17087 exists in Windows Kernel Cryptography Driver which constitutes a locally accessible attack surface.
- When CVE-2020-15999 (type of memory-corruption vulnerability) and CVE-2020-17087 are linked together would allow an attacker to break out of Google Chrome’s sandbox.
Happy Patching!!!
Get in touch with us today to discuss your requirements and the services we offer. Contact us at info@rootfloe.com for a free consultation.
Rootfloe CVE Management team provides monthly updates on the latest discovery of CVE for a better and safer Cyber Eco System. Kindly subscribe to our updates to receive regular updates on the CVE’s to keep your patches update.
