Microsoft Win32K Bug Added To Cisa S Exploited Vulnerabilities List
CISA said it added the vulnerability “based on evidence that threat actors are actively exploiting” it. Cybersecurity company Deepwatch said in a blog last week that proof-of-concept code was publicly disclosed and that threat actors with limited access to a compromised device “can utilize this vulnerability to quickly elevate privileges, allowing them to spread laterally inside the network, create new administrator users, and run privileged commands.” “According to the security researcher credited with disclosing the vulnerability to Microsoft, the vulnerability has already been exploited by advanced persistent threat (APT) actors....