SecQube | Harvey | AI Platform for MS Graph
@secqube.com
We provide managed providers with cost-reducing solutions through a user-friendly, multi-tenant, AI-driven system that enables automated KQL triaging. Connecting to the Microsoft Graph, allowing smooth integration with the Unified Portal and Sentinel.
CVE-2025-60703 Windows Remote Desktop Services Elevation of Privilege Vulnerability scq.ms/3LzqXet
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
🔃 Security Update Guide - Loading - Microsoft
scq.ms
November 12, 2025 at 7:58 PM
CVE-2025-60703 Windows Remote Desktop Services Elevation of Privilege Vulnerability scq.ms/3LzqXet
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
🔃 Security Update Guide - Loading - Microsoft
scq.ms
November 12, 2025 at 7:56 PM
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack scq.ms/47Y283j
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
Microsoft fixes 63 flaws, including an exploited Windows Kernel zero-day and a critical RCE bug.
scq.ms
November 12, 2025 at 7:49 PM
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack scq.ms/47Y283j
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Attackers turned Citrix, Cisco 0-day exploits into custom malware hellscape scq.ms/49gAS2h
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Amazon: Cisco, Citrix 0-days indicate 'advanced' attacker
: Vendors (still) keep mum
scq.ms
November 12, 2025 at 7:48 PM
Attackers turned Citrix, Cisco 0-day exploits into custom malware hellscape scq.ms/49gAS2h
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability scq.ms/4nTx2jt #SecQube #cybersecurity
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.
msrc.microsoft.com
November 12, 2025 at 10:34 AM
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability scq.ms/4nTx2jt #SecQube #cybersecurity
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability scq.ms/4nOOZiO #SecQube #cybersecurity
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.
msrc.microsoft.com
November 12, 2025 at 6:33 AM
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability scq.ms/4nOOZiO #SecQube #cybersecurity
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY #SecQube #cybersecurity
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability
Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally.
msrc.microsoft.com
November 12, 2025 at 2:38 AM
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY #SecQube #cybersecurity
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox scq.ms/47TEiFT #cybersecurity #SecQube
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 11, 2025 at 6:33 AM
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox scq.ms/47TEiFT #cybersecurity #SecQube
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox scq.ms/3LzyqKn #cybersecurity #SecQube
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 11, 2025 at 2:38 AM
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox scq.ms/3LzyqKn #cybersecurity #SecQube
Chromium: CVE-2025-12726 Inappropriate implementation in Views. scq.ms/3XhnIuC #cybersecurity #SecQube
Chromium: CVE-2025-12726 Inappropriate implementation in Views.
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 7, 2025 at 10:34 AM
Chromium: CVE-2025-12726 Inappropriate implementation in Views. scq.ms/3XhnIuC #cybersecurity #SecQube
Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI scq.ms/47Az6qs #cybersecurity #SecQube
Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 1, 2025 at 2:38 AM
Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI scq.ms/47Az6qs #cybersecurity #SecQube
CVE-2025-53783 Microsoft Teams Remote Code Execution Vulnerability scq.ms/438EFe9 #cybersecurity #SecQube
CVE-2025-53783 Microsoft Teams Remote Code Execution Vulnerability
Updated product information in the Software Update table. This is an informational change only.
msrc.microsoft.com
October 31, 2025 at 2:38 AM
CVE-2025-53783 Microsoft Teams Remote Code Execution Vulnerability scq.ms/438EFe9 #cybersecurity #SecQube
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args scq.ms/4nt6mpe #SecQube #cybersecurity
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args
Information published.
msrc.microsoft.com
October 30, 2025 at 10:34 AM
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args scq.ms/4nt6mpe #SecQube #cybersecurity
CVE-2025-40071 tty: n_gsm: Don't block input queue by waiting MSC scq.ms/3JDjCtD #SecQube #cybersecurity
CVE-2025-40071 tty: n_gsm: Don't block input queue by waiting MSC
Information published.
msrc.microsoft.com
October 30, 2025 at 6:33 AM
CVE-2025-40071 tty: n_gsm: Don't block input queue by waiting MSC scq.ms/3JDjCtD #SecQube #cybersecurity
CVE-2025-40079 riscv, bpf: Sign extend struct ops return values properly scq.ms/49s9E8W #SecQube #cybersecurity
CVE-2025-40079 riscv, bpf: Sign extend struct ops return values properly
Information published.
msrc.microsoft.com
October 30, 2025 at 2:38 AM
CVE-2025-40079 riscv, bpf: Sign extend struct ops return values properly scq.ms/49s9E8W #SecQube #cybersecurity
CVE-2025-59503 Azure Compute Resource Provider Elevation of Privilege Vulnerability scq.ms/4o5IdpW #cybersecurity #SecQube
CVE-2025-59503 Azure Compute Resource Provider Elevation of Privilege Vulnerability
Updated one or more CVSS scores for the affected products. This is an informational change only.
msrc.microsoft.com
October 29, 2025 at 2:38 AM
CVE-2025-59503 Azure Compute Resource Provider Elevation of Privilege Vulnerability scq.ms/4o5IdpW #cybersecurity #SecQube
CVE-2025-59287 Windows Server Update Service (WSUS) Remote Code Execution Vulnerability scq.ms/48MigXI #cybersecurity #SecQube
CVE-2025-59287 Windows Server Update Service (WSUS) Remote Code Execution Vulnerability
Updated links to security updates. This is an informational change only.
msrc.microsoft.com
October 25, 2025 at 6:33 AM
CVE-2025-59287 Windows Server Update Service (WSUS) Remote Code Execution Vulnerability scq.ms/48MigXI #cybersecurity #SecQube
CVE-2022-49635 drm/i915/selftests: fix subtraction overflow bug scq.ms/4oseXta #cybersecurity #SecQube
CVE-2022-49635 drm/i915/selftests: fix subtraction overflow bug
Information published.
msrc.microsoft.com
October 25, 2025 at 2:38 AM
CVE-2022-49635 drm/i915/selftests: fix subtraction overflow bug scq.ms/4oseXta #cybersecurity #SecQube
CVE-2022-49610 KVM: VMX: Prevent RSB underflow before vmenter scq.ms/3Jo3WKJ #cybersecurity #SecQube
CVE-2022-49610 KVM: VMX: Prevent RSB underflow before vmenter
Information published.
msrc.microsoft.com
October 24, 2025 at 10:34 AM
CVE-2022-49610 KVM: VMX: Prevent RSB underflow before vmenter scq.ms/3Jo3WKJ #cybersecurity #SecQube
CVE-2025-55676 Windows USB Video Class System Driver Information Disclosure Vulnerability scq.ms/4oDewN2 #cybersecurity #SecQube
CVE-2025-55676 Windows USB Video Class System Driver Information Disclosure Vulnerability
Updated acknowledgment. This is an informational change only.
msrc.microsoft.com
October 24, 2025 at 6:33 AM
CVE-2025-55676 Windows USB Video Class System Driver Information Disclosure Vulnerability scq.ms/4oDewN2 #cybersecurity #SecQube