Windows OneDrive Security Vulnerability Confirmed: All You Need To Know
The monthly Patch Tuesday security updates from Microsoft always get a lot of attention, and rightly so. However, much of the focus tends to be on the Windows operating system itself. This is hardly surprising when you see that seven of the fifteen critical vulnerabilities fixed by Microsoft this month impact Windows 10. Oh, and two "zero-day" Windows vulnerabilities that are being actively exploited by attackers in the wild, as well. This month another vulnerability deserves to be on your threat intelligence radar, and it's for a Windows desktop application that more and more people are using as COVID-19 lockdowns mean they are working from home: OneDrive.
According to Microsoft, the CVE-2020-0935 vulnerability, is a privilege elevation risk that exploits how the OneDrive for Windows desktop app handles symbolic links. If successfully exploited, an attacker could take control of the affected Windows system by overwriting a targeted file and gaining elevated status.
To read the entire article please click on the Source link above.
-Warden Anastasia Luccio, Captain
- 5.1K All Categories
- 2.6K Ask about Connected Technology
- How To...
- 963 Devices & Security
- 1.5K Network Troubleshooting & Connectivity
- 104 General Discussion, Weird & Wonderful
- 37 Network Infrastructure
- 4.7K Ask about Fing
- 450 Fing Account Change Request
- 941 Fing Desktop
- 1.2K Fing App
- 1.5K Fingbox
- 472 Announcements, Beta Testing & Release Notes
- 150 Community Updates
- 22 Getting started
- 12 Community User Guides