Microsoft’s October 2025 Patch Tuesday fixes 183 flaws, including three exploited zero-days and two 9.9 CVSS bugs.

…“The vulnerable driver ships with every version of Windows, up to and including Server 2025,” Adam Barnett, lead software engineer at Rapid7, said. “Maybe your fax modem uses a different chipset, and so you don’t need the Agere driver? Perhaps you’ve simply discovered email? Tough luck. Your PC is still vulnerable, and a local attacker with a minimally privileged account can elevate to administrator.”…

  • 87Six@lemmy.zipEnglish
    12·
    22 hours ago

    Ah yes the 0-decade vulnerability…

    Boi will I miss the ever-encompasing shield of Microsoft when my Windows 10 stops receiving updates…