Monthly Patches are out for Microsoft, Adobe, and Ivanti. New Alerts for Mozilla, Rockwell Automation, Mitel, and Linux.
Microsoft
Monthly Patches include 117 vulnerabilities, 3 are rated Critical, 5 have been previously disclosed, 2 of those are being exploited. Updates include the latest chromium updates for Edge.
More info. And here. And here.
Adobe Monthly Patches include updates for Substance 3D Painter, Commerce, Dimension, Animate, Lightroom, InCopy, InDesign, Substance 3D Stager, and FrameMaker. Highest CVSSv3 score of 9.8
Most require local access though.
More info.
Mozilla has patched a Critical vulnerability in Firefox and Firefox ESR that could lead to RCE.
More info.
Ivanti has published Monthly Updates that include updates for EPMM, CSA, Velocity License Server, Avalanceh, and Connect Secure/Policy Secure. Highest CVSSv3 score of 9.1
More info.
Avalanche update addresses high severity vulnerabilities that could allow a remote attacker to achieve information disclosure, authentication bypass, or DoS. Highest CVSSv3 score of 7.5
More info.
Rockwell Automation has published 5 new bulletins with patches for Logix Controller, PowerFlex 6000T, Verve Asset Manager, and DataMosaix Private Cloud. Highest CVSSv4 score of 9.3
More info.
Google has updated Chrome for Desktop to fix 3 security vulnerabilities.
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Ubuntu has updated cups-browsed and cups-filters. More info.
Mageia has updated cups and cups-filters. More info.
