Microsoft fixes many zero-days under attack

0-day Don't miss Hot stuff Microsoft Microsoft Exchange News patch Patch Tuesday security update Tenable Trend Micro Windows

November 2022 Patch Tuesday is here, with fixes for many vulnerabilities actively exploited in the wild, including CVE-2022-41091, a Windows Mark of the Web bypass flaw, and the ProxyNotShell MS Exchange vulnerabilities. Fixes to prioritize CVE-2022-41091 is a Windows zero-day vulnerability that allows attackers to bypass the Mark of the Web (MOTW) security feature. They can craft a malicious file triggering the flaw and deliver it either via a malicious or compromised website or via … More

The post Microsoft fixes many zero-days under attack appeared first on Help Net Security.