SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Wednesday, August 13th, 2025: Microsoft Patch Tuesday; libarchive vulnerability upgrade; Adobe Patches
7 snips
Aug 13, 2025 Discover the latest on Microsoft’s massive Patch Tuesday, addressing 111 vulnerabilities, including critical Azure issues. Learn about the chilling upgrade of a libarchive vulnerability from low to critical, impacting compression software across many platforms. Don’t miss the spotlight on Adobe's extensive patch rollout for 13 products, highlighting serious authentication concerns. Stay informed on these vital security updates that could affect your systems!
AI Snips
Chapters
Transcript
Episode notes
Patch Tuesday: Apply Patches With Prioritization
- Apply Microsoft's Patch Tuesday updates according to your vulnerability management program and usual caution.
- Prioritize patches that affect your systems and escalate only when necessary.
Cloud Vulnerabilities Are Being Disclosed
- Microsoft now discloses cloud vulnerabilities for services like Azure OpenAI and Azure Portal to increase transparency.
- These cloud flaws usually require no action because Microsoft operates and patches the affected infrastructure.
High CVSS Can Reflect Cloud Impact
- Some cloud elevation-of-privilege bugs can score a full 10 CVSS even if details are sparse.
- High CVSS on cloud services reflects potential impact rather than immediate local exploitability.