SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Wednesday, December 10th, 2025: Microsoft, Adobe, Ivanti, Fortinet, and Ruby patches.
Dec 10, 2025
This week, the discussion highlights crucial security updates from Microsoft, including 57 flaws, with some being actively exploited. Adobe addresses vulnerabilities in ColdFusion and Acrobat, raising concerns about potential exploits. Ivanti fixes a critical stored XSS issue in its Endpoint Manager, while Fortinet faces a cryptographic flaw allowing SSO bypass. Lastly, the ruby-saml library gets patched for an incomplete fix from previous vulnerabilities. Stay informed to keep your systems secure!
AI Snips
Chapters
Transcript
Episode notes
December Microsoft Patch Landscape
- Microsoft addressed 57 vulnerabilities in December, with only three rated critical and several public or exploited issues.
- The exploited flaw targets a Cloud Files mini filter driver for privilege escalation, which is lower impact than remote code execution.
Force Basic Parsing For Invoke-WebRequest
- When using Invoke-WebRequest, explicitly use -UseBasicParsing to avoid implicit execution risks.
- Heed the new warning and update scripts to prevent accidental code execution.
AI Copilots Introduce Execution Risks
- AI copilots that integrate into IDEs can overstep bounds and execute code, creating new attack surfaces.
- Microsoft and JetBrains added constraints to the GitHub Copilot JetBrains plugin to limit such risks.