Recent Blogs
We are introducing an updated exposure score model in Microsoft Defender Vulnerability Management, now available in public preview.
Security teams use the exposure score to understand vulnerability...
May 31, 2026
7 MIN READ
Not every CVE should be handled the same way, and choosing the wrong exception type can remove more risk visibility than intended.
A security recommendation can include many CVEs. If only one CVE i...
May 28, 2026
4 MIN READ
In today’s rapidly evolving digital landscape, organizations must proactively manage security risk and stay ahead of emerging threats to keep systems and data secure. However, many teams face “vulner...
Mar 31, 2026
Executive Summary
Vulnerability Description
CVE-2025-53786 is an Elevation of Privilege (EoP) flaw in hybrid Microsoft Exchange Server deployments. Attackers with administrative rights on an on-p...
Aug 11, 2025
Why transition to CVSS v4?
The Common Vulnerability Scoring System (CVSS) is the global standard for assessing vulnerability severity. As leading institutions like the National Vulnerability Datab...
Mar 20, 2025
4 MIN READ
A new critical vulnerability affecting PAN-OS has been identified and published last week, putting organizations using Palo Alto Networks’ firewalls at risk. In this blog post, we will demonstrate ho...
Nov 26, 2024
3 MIN READ
A new critical Remote Code Execution (RCE) vulnerability affecting CUPS (Common Unix Printing System) has been identified, putting at risk organizations with Unix. In this blogpost we will demonstrat...
Oct 01, 2024
Guidance to ensure your organization's Android devices have the latest security updates
Aug 27, 2024
4 MIN READ
Boost security by prioritizing vulnerabilities affecting your critical assets
Aug 14, 2024
Guidance on how to use export API to extract vulnerability data , build custom reports, integrate with Microsoft Intune and 3 rd party tools, and more.
Jul 23, 2024