美国网络安全与基础设施安全局（CISA）向全球组织发出警告，微软Windows Server Update Services（WSUS）中存在一个正被积极利用的关键远程代码执行（RCE）漏洞。

An out-of-band (OOB) security update that patches an actively exploited Windows Server Update Service (WSUS) vulnerability ...

An "authorized attacker" could exploit this weakness to gain elevated privileges, potentially reaching SYSTEM-level access.

该漏洞利用了 GetCookie 端点中的遗留序列化机制，其中加密的 AuthorizationCookie 对象使用 AES-128-CBC 解密，并通过 BinaryFormatter 反序列化，无需类型验证，从而为整个系统接管打开了大门。

Microsoft halts KB5070881 after reports it broke Hotpatch on Windows Server 2025 while patching an actively exploited WSUS ...

Tracked as CVE-2025-33073, the vulnerability affects the Windows Server Message Block client, a core component used for file and printer sharing and network resource access across enterprise ...

Microsoft has issued an emergency Windows server security patch to fix a critical severity flaw apparently abused in the wild. As part of its most recent Patch Tuesday cumulative update (October 14, ...

A dusty driver inside Microsoft Windows, shipping for years and years and no doubt on your own Windows PC right now, has ...

With all the improvements Microsoft has made in Windows and Windows Server, it’s time to evaluate whether your security settings are as effective as they could be. Best practices for configuring ...

Windows Server 2022 offers the latest features to Microsoft customers and is considered the most secure version as compared to its previous counterparts. Due to the increasing cyber security threats ...

Thieves broke in through a second-floor window, but the museum has had other problems with unsecured Windows too, according ...

“Microsoft says those on Windows 10 will see ‘Your version of Windows has reached the end of support,’ even when their PC is ...