Content Paint
Search
Sign in
Membership

Patch Tuesday

Security  | Aug 16, 2024
Should organisations disable IPv6 to protect against "scary" wormable TCP/IP RCE?
Microsoft's confirmed the RCE bug on Patch Tuesday earlier this week (Image: ChatGPT)

CVE-2024-38063 lets unauthenticated attackers carry out remote code execution by "repeatedly sending IPv6 packets".

Patch Tuesday  | Aug 13, 2024
Patch Tuesday: Microsoft fixes "unusual" number of exploited and public vulnerabilities
Patch Tuesday: Microsoft fixes 'unusual' number of exploited vulnerabilities

The bugs include four publicly known flaws and six that have been exploited in the wild.

Patch Tuesday  | Jul 09, 2024
Patch Tuesday brings a Hyper-V vulnerability exploited in the wild, trio of CVSS 9.8 bugs in RDS
July Patch Tuesday 2024 Hyper-V vulnerability

Admins face prioritising 143 patches including two known-exploited.

Patch Tuesday  | Apr 09, 2024
Monster Patch Tuesday sets new record: RCE bugs galore
Monster Patch Tuesday sets new record: RCE bugs galore

God speed to those pushing fixes.

 |  Patch Tuesday  | Feb 14, 2024
February’s Patch Tuesday brings exploited zero days, Exchange Server headaches
February’s Patch Tuesday brings exploited zero days, Exchange Server headaches

As a major Exchange Service update lands, Redmond admits "it is possible that some functionality may break after installing CU14..."

Patch Tuesday  | Jan 10, 2024
Patch Tuesday brings lots of chaff, a little buggy wheat too. Some CVE highlights to review.
Patch Tuesday brings lots of chaff, a little buggy wheat too. Some CVE highlights to review.

One vulnerability bears a striking resemblance to an 0day that was actively exploited in the wild in November 2023.

Patch Tuesday  | Dec 13, 2023
A December Patch Tuesday recap: Azure Logic Apps, Power Platform get critical fix
A December Patch Tuesday recap: Azure Logic Apps, Power Platform get critical fix

A CVSS 9,8 bug that lets attackers spoof legitimate connectors between Microsoft/Azure services is the pick of the bunch...

 |  Patch Tuesday  | Nov 14, 2023
Three Windows zero days are under attack: Patch up.
Three Windows zero days are under attack: Patch up.

"Loaded by default on just about every version of Windows, so it provides a broad attack surface"

 |  Software  | Oct 11, 2023
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix

A CVSS 9.8, pre-auth RCE that lets an attacker execute arbitrary code without user interaction is wormable on systems where Message Queuing is enabled.

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.