Report incident

Security Alerts

Vulnerability Alert - Windows Cryptographic Functions

type Vulnerabilities
Systems AffectedWindows 10, Windows Server 2016, Windows Server 2019
System Windows

Description

It was found a vulnerability in Microsoft Windows cryptographic functionality allowing an attacker to undermine how Windows validate trust on certificates.

impact

This vulnerability allows an attacker to manipulate HTTPS connections, signed files and emails and execute malicious code as trusted by the Operating System.

Resolution

Update Windows by installing all January 2020 Patch Tuesday patches.

References

https://media.defense.gov/2020/Jan/14/2002234275/-1/-1/0/CSA-WINDOWS-10-CRYPT-LIB-20190114.PDF