Monthly Patches are out for Microsoft, Adobe, Fortinet, and Google Pixel. New Alerts for Google Chrome, Tenable, Intrado, Mozilla, Broadcom (Brocade SANnav, Symantec Endpoint Protection), Veeam, Hitachi Energy, Dell, Phoenix Contact, and Linux.
Microsoft
Monthly Patches are out with 49 vulnerabilities plus 9 third-party vulnerabilities, 1 rated Critical (MSMQ RCE), and 1 previously disclosed. Highest CVSSv3 score of 9.8
More info. And here.
Adobe Monthly Patches are out with updates for Photoshop, Experience Manager, Audition, Media Encoder, FrameMaker Publishing, Commerce, ColdFusion, Substance 3D Stager, Creative Cloud Desktop, and Acrobat Android. Highest CVSSv3 score of 10
More info.
Fortinet Monthly Patches include 7 advisories, highest CVSSv3 score of 7.4
More info.
Google Pixel Monthly Patches are out with 45 vulnerabilities, 7 rated Critical, 24 rated High, 14 rated Medium, plus Google Android and Qualcomm patches.
More info.
Google has published an updated for Chrome for Desktop, with 21 security fixes.
More info.
Security Center has been updated to fix 2 vulnerabilities and third-party software vulnerabilities. Highest CVSSv3 score of 9.4
More info.
911 Emergency Gateway contains an SQL Injection vulnerability that could allow a remote attacker to execute malicious code, exfiltrate data, or manipulate the database. CVSSv4 score of 10.
More info.
Mozilla has published security updates rated High for Firefox and Firefox ESR.
More info.
Brocade SANnav contains multiple vulnerabilities due to third-party software. Highest CVSSv3 score of 7.4
More info. And here.
Symantec Endpoint Protection has been updated to fix 4 security vulnerabilities rated High.
More info.
A vulnerability in Veeam Recovery Orchestrator (VRO) allows an attacker to access the VRO web UI with administrative privileges.
More info.
Hitachi Energy has published 6 bulletins addressing security vulnerabilities in FOXMAN-UN, UNEM FOX61x, XMC20, FOXMAN-UN/FOXCST, and UNEM/ECST. Highest CVSSv3 score of 10.
More info. And here.
Dell Secure Connect Gateway and Policy Manager contain remediation for multiple vulnerabilities that could be exploited by malicious users to compromise the affected system. Dell rates these Critical.
More info. And here.
Phoenix Contact has updated FL MGUARD 1102/1105 products to fix an unbounded growth vulnerability in OpenSSL. CVSSv3 score of 7.5
More info. And here.
SUSE has updated the kernel and firmware. More info.
Red Hat has updated the kernel and kernel-rt. More info.
Ubuntu has updated the kernel. More info.
Amazon Linux 2023 has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page