CVE-2018-8453

October 11, 2018

Patch Tuesday, October 2018 Edition

This post was originally published on this siteMicrosoft this week released software updates to fix roughly 50 security problems with various versions of its Windows operating system and related software, including one flaw that is already being exploited and another for which exploit code is publicly available. The zero-day bug — CVE-2018-8453 — affects Windows versions 7, 8.1, 10 and Server 2008, 2012, 2016 and 2019. According to security firm Ivanti, an attacker first needs to log into the operating system, but then can exploit this vulnerability to gain administrator privileges. Another vulnerability patched on Tuesday — CVE-2018-8423 — was […]