SecQube | Harvey | AI Platform for MS Graph
@secqube.com
We provide managed providers with cost-reducing solutions through a user-friendly, multi-tenant, AI-driven system that enables automated KQL triaging. Connecting to the Microsoft Graph, allowing smooth integration with the Unified Portal and Sentinel.
CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability scq.ms/3LTVP9x #cybersecurity #SecQube
CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability
Information published.
msrc.microsoft.com
November 22, 2025 at 2:38 AM
CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability scq.ms/3LTVP9x #cybersecurity #SecQube
CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability scq.ms/4a4h7eE #cybersecurity #SecQube
CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability
Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an unauthorized attacker to elevate privileges over a network.
msrc.microsoft.com
November 21, 2025 at 10:34 AM
CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability scq.ms/4a4h7eE #cybersecurity #SecQube
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability scq.ms/486Q6Vf #cybersecurity #SecQube
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability
Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network.
msrc.microsoft.com
November 21, 2025 at 6:33 AM
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability scq.ms/486Q6Vf #cybersecurity #SecQube
CVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability scq.ms/4oQ0tUC #SecQube #cybersecurity
CVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Acknowledgement added. This is an informational change only.
msrc.microsoft.com
November 21, 2025 at 2:38 AM
CVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability scq.ms/4oQ0tUC #SecQube #cybersecurity
CVE-2025-60703 Windows Remote Desktop Services Elevation of Privilege Vulnerability scq.ms/3LzqXet
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
🔃 Security Update Guide - Loading - Microsoft
scq.ms
November 12, 2025 at 7:58 PM
CVE-2025-60703 Windows Remote Desktop Services Elevation of Privilege Vulnerability scq.ms/3LzqXet
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
🔃 Security Update Guide - Loading - Microsoft
scq.ms
November 12, 2025 at 7:56 PM
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack scq.ms/47Y283j
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
Microsoft fixes 63 flaws, including an exploited Windows Kernel zero-day and a critical RCE bug.
scq.ms
November 12, 2025 at 7:49 PM
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack scq.ms/47Y283j
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Attackers turned Citrix, Cisco 0-day exploits into custom malware hellscape scq.ms/49gAS2h
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Amazon: Cisco, Citrix 0-days indicate 'advanced' attacker
: Vendors (still) keep mum
scq.ms
November 12, 2025 at 7:48 PM
Attackers turned Citrix, Cisco 0-day exploits into custom malware hellscape scq.ms/49gAS2h
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability scq.ms/4nTx2jt #SecQube #cybersecurity
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.
msrc.microsoft.com
November 12, 2025 at 10:34 AM
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability scq.ms/4nTx2jt #SecQube #cybersecurity
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability scq.ms/4nOOZiO #SecQube #cybersecurity
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.
msrc.microsoft.com
November 12, 2025 at 6:33 AM
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability scq.ms/4nOOZiO #SecQube #cybersecurity
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY #SecQube #cybersecurity
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability
Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally.
msrc.microsoft.com
November 12, 2025 at 2:38 AM
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY #SecQube #cybersecurity
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox scq.ms/47TEiFT #cybersecurity #SecQube
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 11, 2025 at 6:33 AM
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox scq.ms/47TEiFT #cybersecurity #SecQube
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox scq.ms/3LzyqKn #cybersecurity #SecQube
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 11, 2025 at 2:38 AM
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox scq.ms/3LzyqKn #cybersecurity #SecQube
Chromium: CVE-2025-12726 Inappropriate implementation in Views. scq.ms/3XhnIuC #cybersecurity #SecQube
Chromium: CVE-2025-12726 Inappropriate implementation in Views.
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 7, 2025 at 10:34 AM
Chromium: CVE-2025-12726 Inappropriate implementation in Views. scq.ms/3XhnIuC #cybersecurity #SecQube
Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI scq.ms/47Az6qs #cybersecurity #SecQube
Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 1, 2025 at 2:38 AM
Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI scq.ms/47Az6qs #cybersecurity #SecQube
CVE-2025-53783 Microsoft Teams Remote Code Execution Vulnerability scq.ms/438EFe9 #cybersecurity #SecQube
CVE-2025-53783 Microsoft Teams Remote Code Execution Vulnerability
Updated product information in the Software Update table. This is an informational change only.
msrc.microsoft.com
October 31, 2025 at 2:38 AM
CVE-2025-53783 Microsoft Teams Remote Code Execution Vulnerability scq.ms/438EFe9 #cybersecurity #SecQube
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args scq.ms/4nt6mpe #SecQube #cybersecurity
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args
Information published.
msrc.microsoft.com
October 30, 2025 at 10:34 AM
CVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_args scq.ms/4nt6mpe #SecQube #cybersecurity