Microsoft released a security fix for a Group Policy-related vulnerability for the oldest Windows 10 version recently. The patch should be will be deployed via the RSAT Server tool.
Elevation of privilege RSS
The Zoom installer for Apple macOS can potentially grant elevated security privileges to attackers owing to a flaw in the setup file. Zoom did release a patch, but the bug is still exploitable.
In the last seven days, we've seen the release of official Windows 11 ISOs, the discovery of another security flaw, and even a higher-res Xbox dashboard. Be sure to catch up via our handy overview.
Google Project Zero has disclosed yet another Windows vulnerability that can lead to elevation of privilege. Microsoft had initially stated that it would not resolve it, but is now working on a fix.
Google's Project Zero team has disclosed yet another elevation of privilege exploit present in Windows given Microsoft's inability to properly fix it in the given 90 days time frame.
Microsoft has submitted a Chromium commit that helps automatically "de-elevate" browsers when launched with elevated privileges. However, Google engineers suggest de-elevating downloads instead.
Google has exposed a "high" severity issue in Windows 10 version 1709, which allows the elevation of privilege by arbitrarily changing a file's security descriptor, but it can't be done remotely.
