{"id":205,"date":"2025-03-03T20:34:01","date_gmt":"2025-03-03T20:34:01","guid":{"rendered":"https:\/\/aldomonges.com\/aldomonges\/?p=205"},"modified":"2025-03-03T20:34:01","modified_gmt":"2025-03-03T20:34:01","slug":"vulnerabilidades-en-productos-microsoft","status":"publish","type":"post","link":"https:\/\/aldomonges.com\/aldomonges\/?p=205","title":{"rendered":"Vulnerabilidades en Productos Microsoft"},"content":{"rendered":"

Se han identificado m\u00faltiples vulnerabilidades de alto riesgo en productos de Microsoft. Estas vulnerabilidades podr\u00edan permitir a un atacante remoto ejecutar c\u00f3digo malicioso o escalar privilegios en los sistemas afectados.<\/p>\n

Productos Afectados<\/strong><\/h2>\n

Microsoft Power Pages<\/p>\n

Microsoft Bing<\/p>\n

Impacto<\/strong><\/h2>\n

Las vulnerabilidades de severidad alta se identifican como:<\/strong><\/p>\n

CVE-2025-24989:<\/strong>\u00a0Puntuaci\u00f3n CVSSv3 7.8. Una vulnerabilidad de control de acceso inadecuado permite a un atacante no autorizado elevar privilegios a trav\u00e9s de una red, potencialmente eludiendo el control de registro de usuarios.<\/p>\n

Puntuaci\u00f3n CVSSv3 8.2. Permite la ejecuci\u00f3n de c\u00f3digo arbitrario en el sistema objetivo, comprometiendo la seguridad y confidencialidad.<\/p>\n

Recomendaciones<\/strong><\/p>\n

    \n
  • Actualizar los productos afectados.<\/li>\n
  • Visitar la p\u00e1gina oficial de Microsoft para descargar las \u00faltimas actualizaciones y parches de seguridad.<\/li>\n<\/ul>\n

    Referencias<\/strong><\/p>\n

    \n
    https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-24989<\/div>\n<\/figure>\n
    \n
    https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-21355<\/div>\n<\/figure>\n","protected":false},"excerpt":{"rendered":"

    Se han identificado m\u00faltiples vulnerabilidades de alto riesgo en productos de Microsoft. Estas vulnerabilidades podr\u00edan permitir a un atacante remoto ejecutar c\u00f3digo malicioso o escalar […]<\/p>\n","protected":false},"author":1,"featured_media":206,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"class_list":["post-205","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-seguridad-informatica"],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.cert.gov.py\/wp-content\/uploads\/2024\/02\/Microsoft1.jpg?resize=275%2C183&ssl=1","_links":{"self":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts\/205","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=205"}],"version-history":[{"count":1,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts\/205\/revisions"}],"predecessor-version":[{"id":207,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/posts\/205\/revisions\/207"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=\/wp\/v2\/media\/206"}],"wp:attachment":[{"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=205"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=205"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aldomonges.com\/aldomonges\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=205"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}