Monthly Patches are out for Microsoft and Adobe. New Alerts for Microsoft Edge (Exploit), BlackBerry, Google Chrome (Exploit), Rockwell Automation, ASUS, and Mozilla (Exploit).
Microsoft Exploit
Microsoft Monthly Patches include fixes for 66 vulnerabilities, 5 rated Critical, 2 being actively exploited. Highest CVSSv3 score of 8.8
More info. And here. And here.
Microsoft has updated Edge with a fix for a chromium vulnerability being actively exploited.
More info.
Adobe has published their Monthly Patches, with updates for Connect, Acrobat andReader, and Experience Manager. Highest CVSSv3 score of 7.8
More info.
Multiple vulnerabilities in the Management Console and Self-Service of AtHoc Server could allow a remote attacker to execute script commands in the context of the affected user account. Highest CVSSv3 score of 7.4
More info.
Google has published an update for Chrome for Desktop with 16 security fixes, at least 1 rated Critical. Exploits exist.
More info.
FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user's input, which allows a remote attacker to achieve RCE via crafted malicious packets. CVSSv3 score of 9.8
More info.
ASUS has published updates for RT-AX55, RT-AX56U_V2 and RT-AC86U that fixes 3 security vulnerabilities, all rated CVSSv3 score of 9.8
More info.
Mozilla has published Critical security updates for Firefox, Firefox ESR, and Thunderbird. This is being exploited in the wild.
More info.
Comments