ZDI-23-381: Microsoft Windows Remote Desktop Connection Uninitialized Variable Information Disclosure Vulnerability

Read Time:14 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must open a remote desktop session to a host that has been compromised or otherwise under control of an attacker.

cacti-1.2.30-1.el8 cacti-spine-1.2.30-1.el8

FEDORA-EPEL-2025-ba03a05138 Packages in this update: cacti-1.2.30-1.el8 cacti-spine-1.2.30-1.el8 Update description: Update cacti and cacti-spine to version 1.2.30. This includes the upstream...

April 15, 2025

cacti-1.2.30-1.el9 cacti-spine-1.2.30-1.el9

FEDORA-EPEL-2025-19d7286f00 Packages in this update: cacti-1.2.30-1.el9 cacti-spine-1.2.30-1.el9 Update description: Update cacti and cacti-spine to version 1.2.30. This includes the upstream...

April 15, 2025

USN-7437-1: CImg library vulnerabilities

It was discovered that the CImg library did not properly check the size of images before loading them. An attacker...

April 15, 2025

mujs-1.0.9-2.el8

FEDORA-EPEL-2025-141926b526 Packages in this update: mujs-1.0.9-2.el8 Update description: Backport upstream fix for CVE-2021-33796. https://nvd.nist.gov/vuln/detail/CVE-2021-33796 Read More

April 14, 2025

USN-7436-1: WebKitGTK vulnerabilities

Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a...

April 14, 2025

USN-7435-1: Protocol Buffers vulnerability

It was discovered that Protocol Buffers incorrectly handled memory when receiving malicious input using the Java bindings. An attacker could...

April 14, 2025

RansomHouse ransomware: what you need to know

Slopsquatting

The AI Fix #46: AI can read minds now, and is your co-host a clone?

North Korean Hackers Exploit LinkedIn to Infect Crypto Developers with Infostealers

Compliance Now Biggest Cyber Challenge for UK Financial Services

Bot Traffic Overtakes Human Activity as Threat Actors Turn to AI

Organizations Found to Address Only 21% of GenAI-Related Vulnerabilities

LabHost Phishing Mastermind Sentenced to 8.5 Years

Closing the Gap: How to Build a Consistent Exposure and Vulnerability Management Workflow

ZDI-23-381: Microsoft Windows Remote Desktop Connection Uninitialized Variable Information Disclosure Vulnerability

cacti-1.2.30-1.el8 cacti-spine-1.2.30-1.el8

cacti-1.2.30-1.el9 cacti-spine-1.2.30-1.el9

USN-7437-1: CImg library vulnerabilities

mujs-1.0.9-2.el8

USN-7436-1: WebKitGTK vulnerabilities

USN-7435-1: Protocol Buffers vulnerability