پشتیبانی 24/7 :

031-36691964 | 021-88203003

جستجو

انتشار اولین به روز رسانی امنیتی ماهیانه مایکروسافت در سال 2025 و رفع 159 آسیب پذیری

تیتر مطالب

مایکروسافت وصله های سه شنبه های ماه ژانویه سال 2025 را منتشر کرد که این به روز رسانی امنیتی 159 آسیب پذیری شامل 8 آسیب پذیری Zero-day که به 3 مورد از آنها به صورت فعال مورد بهره برداری قرار گرفته اند، را رفع نموده است.
در این به روز رسانی 12 آسیب پذیری حیاتی از جمله افشای اطلاعات، ارتقا سطح امتیازان و اجرای کد از راه دور نیز رفع شده اند.
تعداد آسیب پذیری ها در هر درسته به صورت زیر است:

  • 40 Elevation of Privilege Vulnerabilities
  • 14 Security Feature Bypass Vulnerabilities
  • 58 Remote Code Execution Vulnerabilities
  • 24 Information Disclosure Vulnerabilities
  • 20 Denial of Service Vulnerabilities
  • 5 Spoofing Vulnerabilities

3 آسیب پذیری Zero-day افشا شده

سه آسیب پذیری Zero-day افشا شده که به صورت فعال در حملات مورد بهره برداری قرار گرفته اند، به شرح زیر هستند:

CVE-2025-21333, CVE-2025-21334, CVE-2025-21335 – Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

مایکروسافت این سه آسیب پذیری ارتقا سطح دسترسی در ویندوز Hyper-V را رفع نموده است که در حملات به منظور دسترسی به مجوزهای SYSTEM مورد بهره برداری قرار گرفته اند.
اطلاعاتی از اینکه چه کسی این آسیب پذیری ها را شناسایی کرده و چگونگی استفاده از آنها در حملات ذکر نشده است. از آنجایی که این آسیب پذیری ها در یک قابلیت مشابه وجود دارد می توان فهمید که در حملات یکسانی نیز مورد استفاده قرار گرفته اند.

آسیب پذیری Zero-day

CVE-2025-21275 – Windows App Package Installer Elevation of Privilege Vulnerability

این آسیب پذیری ارتقا سطح دسترسی در Windows App Package Installer می تواند منجر به دسترسی به مجوزهای SYSTEM شود. مهاجمی که از این آسیب پذیری به صورت موفقیت آمیز بهره برداری نمایند می تواند به مجوزهای سطح SYSTEM دسترسی یاید.

CVE-2025-21308 – Windows Themes Spoofing Vulnerability

این آسیب پذیری می تواند به راحتی با نمایش یک فایل تم خاص جعلی در ویندوز اکسپلورر مورد بهره برداری قرار گیرد.
به گفته مایکروسافت مهاجم می تواند کاربری را وادار کند تا یک فایل مخرب را از طریق ایمیل یا روشهای دیگر دریافت و در سیستم آسیب پذیر بارگذاری کند و پس انجام عملیات ساده ای از آسیب پذیری موجود در سیستم بهره برداری کند.
زمانی که یک فایل تم در ویندوز اکسپلورر مشاهده و از گزینه های Wallpaper یا BrandImage استفاده می شود که یک مسیر فایل شبکه خاص است، ویندوز به طور خودکار درخواست احراز هویت به هاست از راه دور ارسال می کند، این درخواست شامل مجوزهای NTLM کاربر لاگین شده است. این هش های NTLM می تواند کرک شده و به پسورد و یوزرنیم کاربر رسید.
چنانچه NTLM غیرفعال شده باشد یا پالیسی Restrict NTLM: Outgoing NTLM traffic to remote servers فعال باشد، این آسیب پذیری قابل بهره برداری نخواهد بود.

CVE-2025-21186, CVE-2025-21366, CVE-2025-21395 – Microsoft Access Remote Code Execution Vulnerability

مایکروسافت همچنین سه آسیب اجرای کد از راه دور را در Access رفع نموده است. این آسیب پذیری ها زمانی که یک فایل Access جعلی خاصی باز شود، مورد بهره برداری قرار میگیرند.
مایکروسافت این مشکل را با مسدودسازی دسترسی به مستندات Access زیر چنانچه از طریق ایمیل ارسال شده باشند، کاهش داده است:

  • accdb
  • accde
  • accdw
  • accdt
  • accda
  • accdr
  • accdu

آنچه که این موضوع را جالب می کند این است که Unpatched.ai، یک پلتفرم کشف آسیب پذیری با کمک هوش مصنوعی، هر سه نقص را کشف کرده است.

به روز رسانی ها اخیر سایر شرکتها:

* Adobe released security updates for Photoshop, Substance3D Stager and Designer, Adobe Illustrator for iPad, and Adobe Animate.
*Cisco released security updates for multiple products, including Cisco ThousandEyes Endpoint Agent and Cisco Crosswork Network Controller.
*Ivanti released security updates for a Connect Secure flaw zero-day exploited in attacks to deploy custom malware on devices.
*Fortinet released a security update for an authentication bypass zero-day vulnerability in FortiOS and FortiProxy that was exploited in attacks since November.
*GitHub released security updates for two Git vulnerabilities.
*Moxa released security updates for high-severity and a critical vulnerabilities in its industrial networking and communications networking devices.
*ProjectDiscovery released security updates in September for a Nuclei flaw that allows malicious templates to bypass signature verification.
*SAP releases security updates for multiple products, including fixes for two critical (9.9/10) vulnerabilities in SAP NetWeaver.
*SonicWall releases patches for an authentication bypass vulnerability in SSL VPN and SSH management that is “susceptible to actual exploitation.”
*Zyxel has released security updates to fix an improper privilege management vulnerability in the web management interface.

لیست کامل به روز رسانی ها ماه ژانویه 2025 مایکروسافت

 

Tag

CVE IDCVE TitleSeverity
.NETCVE-2025-21171.NET Remote Code Execution VulnerabilityImportant
.NETCVE-2025-21173.NET Elevation of Privilege VulnerabilityImportant
.NET and Visual StudioCVE-2025-21172.NET and Visual Studio Remote Code Execution VulnerabilityImportant
.NET, .NET Framework, Visual StudioCVE-2025-21176.NET, .NET Framework, and Visual Studio Remote Code Execution VulnerabilityImportant
Active Directory Domain ServicesCVE-2025-21293Active Directory Domain Services Elevation of Privilege VulnerabilityImportant
Active Directory Federation ServicesCVE-2025-21193Active Directory Federation Server Spoofing VulnerabilityImportant
Azure Marketplace SaaS ResourcesCVE-2025-21380Azure Marketplace SaaS Resources Information Disclosure VulnerabilityCritical
BranchCacheCVE-2025-21296BranchCache Remote Code Execution VulnerabilityCritical
Internet ExplorerCVE-2025-21326Internet Explorer Remote Code Execution VulnerabilityImportant
IP HelperCVE-2025-21231IP Helper Denial of Service VulnerabilityImportant
Line Printer Daemon Service (LPD)CVE-2025-21224Windows Line Printer Daemon (LPD) Service Remote Code Execution VulnerabilityImportant
Microsoft AutoUpdate (MAU)CVE-2025-21360Microsoft AutoUpdate (MAU) Elevation of Privilege VulnerabilityImportant
Microsoft Azure Gateway ManagerCVE-2025-21403On-Premises Data Gateway Information Disclosure VulnerabilityImportant
Microsoft Brokering File SystemCVE-2025-21315Microsoft Brokering File System Elevation of Privilege VulnerabilityImportant
Microsoft Brokering File SystemCVE-2025-21372Microsoft Brokering File System Elevation of Privilege VulnerabilityImportant
Microsoft Digest AuthenticationCVE-2025-21294Microsoft Digest Authentication Remote Code Execution VulnerabilityCritical
Microsoft Graphics ComponentCVE-2025-21382Windows Graphics Component Elevation of Privilege VulnerabilityImportant
Microsoft OfficeCVE-2025-21346Microsoft Office Security Feature Bypass VulnerabilityImportant
Microsoft OfficeCVE-2025-21365Microsoft Office Remote Code Execution VulnerabilityImportant
Microsoft Office AccessCVE-2025-21186Microsoft Access Remote Code Execution VulnerabilityImportant
Microsoft Office AccessCVE-2025-21366Microsoft Access Remote Code Execution VulnerabilityImportant
Microsoft Office AccessCVE-2025-21395Microsoft Access Remote Code Execution VulnerabilityImportant
Microsoft Office ExcelCVE-2025-21364Microsoft Excel Security Feature Bypass VulnerabilityImportant
Microsoft Office ExcelCVE-2025-21362Microsoft Excel Remote Code Execution VulnerabilityCritical
Microsoft Office ExcelCVE-2025-21354Microsoft Excel Remote Code Execution VulnerabilityCritical
Microsoft Office OneNoteCVE-2025-21402Microsoft Office OneNote Remote Code Execution VulnerabilityImportant
Microsoft Office OutlookCVE-2025-21357Microsoft Outlook Remote Code Execution VulnerabilityImportant
Microsoft Office Outlook for MacCVE-2025-21361Microsoft Outlook Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2025-21344Microsoft SharePoint Server Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2025-21348Microsoft SharePoint Server Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2025-21393Microsoft SharePoint Server Spoofing VulnerabilityImportant
Microsoft Office VisioCVE-2025-21345Microsoft Office Visio Remote Code Execution VulnerabilityImportant
Microsoft Office VisioCVE-2025-21356Microsoft Office Visio Remote Code Execution VulnerabilityImportant
Microsoft Office WordCVE-2025-21363Microsoft Word Remote Code Execution VulnerabilityImportant
Microsoft PurviewCVE-2025-21385Microsoft Purview Information Disclosure VulnerabilityCritical
Microsoft Windows Search ComponentCVE-2025-21292Windows Search Service Elevation of Privilege VulnerabilityImportant
Power AutomateCVE-2025-21187Microsoft Power Automate Remote Code Execution VulnerabilityImportant
Reliable Multicast Transport Driver (RMCAST)CVE-2025-21307Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution VulnerabilityCritical
Visual StudioCVE-2025-21405Visual Studio Elevation of Privilege VulnerabilityImportant
Visual StudioCVE-2024-50338GitHub: CVE-2024-50338 Malformed URL allows information disclosure through git-credential-managerImportant
Visual StudioCVE-2025-21178Visual Studio Remote Code Execution VulnerabilityImportant
Windows BitLockerCVE-2025-21213Secure Boot Security Feature Bypass VulnerabilityImportant
Windows BitLockerCVE-2025-21214Windows BitLocker Information Disclosure VulnerabilityImportant
Windows Boot LoaderCVE-2025-21211Secure Boot Security Feature Bypass VulnerabilityImportant
Windows Boot ManagerCVE-2025-21215Secure Boot Security Feature Bypass VulnerabilityImportant
Windows Client-Side Caching (CSC) ServiceCVE-2025-21374Windows CSC Service Information Disclosure VulnerabilityImportant
Windows Client-Side Caching (CSC) ServiceCVE-2025-21378Windows CSC Service Elevation of Privilege VulnerabilityImportant
Windows Cloud Files Mini Filter DriverCVE-2025-21271Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityImportant
Windows COMCVE-2025-21281Microsoft COM for Windows Elevation of Privilege VulnerabilityImportant
Windows COMCVE-2025-21272Windows COM Server Information Disclosure VulnerabilityImportant
Windows COMCVE-2025-21288Windows COM Server Information Disclosure VulnerabilityImportant
Windows Connected Devices Platform ServiceCVE-2025-21207Windows Connected Devices Platform Service (Cdpsvc) Denial of Service VulnerabilityImportant
Windows Cryptographic ServicesCVE-2025-21336Windows Cryptographic Information Disclosure VulnerabilityImportant
Windows Digital MediaCVE-2025-21261Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21258Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21232Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21256Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21255Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21226Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21310Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21324Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21249Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21341Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21227Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21260Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21265Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21263Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21228Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21327Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Digital MediaCVE-2025-21229Windows Digital Media Elevation of Privilege VulnerabilityImportant
Windows Direct ShowCVE-2025-21291Windows Direct Show Remote Code Execution VulnerabilityImportant
Windows DWM Core LibraryCVE-2025-21304Microsoft DWM Core Library Elevation of Privilege VulnerabilityImportant
Windows Event TracingCVE-2025-21274Windows Event Tracing Denial of Service VulnerabilityImportant
Windows Geolocation ServiceCVE-2025-21301Windows Geolocation Service Information Disclosure VulnerabilityImportant
Windows HelloCVE-2025-21340Windows Virtualization-Based Security (VBS) Security Feature Bypass VulnerabilityImportant
Windows Hyper-V NT Kernel Integration VSPCVE-2025-21335Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege VulnerabilityImportant
Windows Hyper-V NT Kernel Integration VSPCVE-2025-21334Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege VulnerabilityImportant
Windows Hyper-V NT Kernel Integration VSPCVE-2025-21333Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege VulnerabilityImportant
Windows InstallerCVE-2025-21275Windows App Package Installer Elevation of Privilege VulnerabilityImportant
Windows InstallerCVE-2025-21331Windows Installer Elevation of Privilege VulnerabilityImportant
Windows InstallerCVE-2025-21287Windows Installer Elevation of Privilege VulnerabilityImportant
Windows KerberosCVE-2025-21242Windows Kerberos Information Disclosure VulnerabilityImportant
Windows KerberosCVE-2025-21299Windows Kerberos Security Feature Bypass VulnerabilityImportant
Windows KerberosCVE-2025-21218Windows Kerberos Denial of Service VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21316Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21318Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21321Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21320Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21317Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21319Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows Kernel MemoryCVE-2025-21323Windows Kernel Memory Information Disclosure VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21268MapUrlToZone Security Feature Bypass VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21269Windows HTML Platforms Security Feature Bypass VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21332MapUrlToZone Security Feature Bypass VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21276Windows MapUrlToZone Denial of Service VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21219MapUrlToZone Security Feature Bypass VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21328MapUrlToZone Security Feature Bypass VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21329MapUrlToZone Security Feature Bypass VulnerabilityImportant
Windows MapUrlToZoneCVE-2025-21189MapUrlToZone Security Feature Bypass VulnerabilityImportant
Windows Message QueuingCVE-2025-21251Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Message QueuingCVE-2025-21230Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Message QueuingCVE-2025-21220Microsoft Message Queuing Information Disclosure VulnerabilityImportant
Windows Message QueuingCVE-2025-21270Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Message QueuingCVE-2025-21285Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Message QueuingCVE-2025-21290Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Message QueuingCVE-2025-21289Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows Message QueuingCVE-2025-21277Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityImportant
Windows NTLMCVE-2025-21217Windows NTLM Spoofing VulnerabilityImportant
Windows NTLMCVE-2025-21311Windows NTLM V1 Elevation of Privilege VulnerabilityCritical
Windows OLECVE-2025-21298Windows OLE Remote Code Execution VulnerabilityCritical
Windows PrintWorkflowUserSvcCVE-2025-21235Windows PrintWorkflowUserSvc Elevation of Privilege VulnerabilityImportant
Windows PrintWorkflowUserSvcCVE-2025-21234Windows PrintWorkflowUserSvc Elevation of Privilege VulnerabilityImportant
Windows Recovery Environment AgentCVE-2025-21202Windows Recovery Environment Agent Elevation of Privilege VulnerabilityImportant
Windows Remote Desktop ServicesCVE-2025-21309Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2025-21297Windows Remote Desktop Services Remote Code Execution VulnerabilityCritical
Windows Remote Desktop ServicesCVE-2025-21225Windows Remote Desktop Gateway (RD Gateway) Denial of Service VulnerabilityImportant
Windows Remote Desktop ServicesCVE-2025-21330Windows Remote Desktop Services Denial of Service VulnerabilityImportant
Windows Remote Desktop ServicesCVE-2025-21278Windows Remote Desktop Gateway (RD Gateway) Denial of Service VulnerabilityImportant
Windows Secure BootCVE-2024-7344Cert CC: CVE-2024-7344 Howyar Taiwan Secure Boot BypassImportant
Windows Security Account ManagerCVE-2025-21313Windows Security Account Manager (SAM) Denial of Service VulnerabilityImportant
Windows Smart CardCVE-2025-21312Windows Smart Card Reader Information Disclosure VulnerabilityImportant
Windows SmartScreenCVE-2025-21314Windows SmartScreen Spoofing VulnerabilityImportant
Windows SPNEGO Extended NegotiationCVE-2025-21295SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution VulnerabilityCritical
Windows Telephony ServiceCVE-2025-21243Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21244Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21241Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21303Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21246Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21252Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21417Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21248Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21306Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21233Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21411Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21413Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21237Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21239Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21339Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21236Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21245Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21409Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21223Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21282Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21305Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21273Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21266Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21250Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21302Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21240Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21286Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows Telephony ServiceCVE-2025-21238Windows Telephony Service Remote Code Execution VulnerabilityImportant
Windows ThemesCVE-2025-21308Windows Themes Spoofing VulnerabilityImportant
Windows UPnP Device HostCVE-2025-21300Windows upnphost.dll Denial of Service VulnerabilityImportant
Windows UPnP Device HostCVE-2025-21389Windows upnphost.dll Denial of Service VulnerabilityImportant
Windows Virtual Trusted Platform ModuleCVE-2025-21210Windows BitLocker Information Disclosure VulnerabilityImportant
Windows Virtual Trusted Platform ModuleCVE-2025-21284Windows Virtual Trusted Platform Module Denial of Service VulnerabilityImportant
Windows Virtual Trusted Platform ModuleCVE-2025-21280Windows Virtual Trusted Platform Module Denial of Service VulnerabilityImportant
Windows Virtualization-Based Security (VBS) EnclaveCVE-2025-21370Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege VulnerabilityImportant
Windows Web Threat Defense User ServiceCVE-2025-21343Windows Web Threat Defense User Service Information Disclosure VulnerabilityImportant
Windows Win32K – GRFXCVE-2025-21338GDI+ Remote Code Execution VulnerabilityImportant
Windows WLAN Auto Config ServiceCVE-2025-21257Windows WLAN AutoConfig Service Information Disclosure VulnerabilityImportant

شرکت فنی مهندسی ارتباط پانا

از سال ۱۳۸۴ به عنوان شرکتی پیشرو در زمینه “امنیت شبکه” فعالیت خود را آغاز کرد و با اخذ مجوزهای مربوطه و همچنین با بهره گیری از تیمی متخصص و حرفه ای در جایگاه یکی از معتبرترین فعالان این صنعت قرار گرفته است. 

دسترسی سریع

امنیت حرفه ای

عضویت در خبرنامه

شبکه اجتماعی