Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

26 January 2023

Akamai researchers have published a PoC exploit for a critical vulnerability (CVE-2022-34689) in Windows CryptoAPI, which validates public key certificates. “An attacker could manipulate an existing public x.509 certificate to spoof their identity and perform actions such as authentication or code signing as the targeted certificate,” Microsoft said in October 2022, when they announced fixes for vulnerable Windows and Windows Server versions.

Read full article on Help Net Security

Date:

26 January 2023

Categorie(s):

NEWS

Tag(s):

Microsoft, OS, PoC, Researchers, Windows

Microsoft finds Kubernetes clusters targeted by OpenMetadata exploits18 April 2024
6 Best Free and Open-Source Web Application Firewalls18 April 2024
Ransomware feared as IT ‘issues’ force Octapharma Plasma to close 150+ centers18 April 2024
Europol-led task force shuts down LabHost phishing platform, arrests suspected hackers18 April 2024
Crooks exploit OpenMetadata holes to mine crypto – and leave a sob story for victims18 April 2024