Monthly Patches are out for Microsoft, Adobe, and Fortinet. New Alerts for VMware, Aruba, Google Chrome, Google ChromeOS, Intel, and F5.
Microsoft
Microsoft Monthly Patches are out, fixing 64 vulnerabilities, 14 vulnerabilities affecting Microsoft Edge, and 5 vulnerabilities affecting Microsoft's Linux distribution, Mariner. Three vulnerabilities are being exploited, and 3 have been made public before the release of the patches, and 3 are rated Critical. Highest CVSSv3 score of 9.8
More info. And here. And here.
Adobe has published their Monthly Patches with 14 bulletins, updates for ColdFusion, RoboHelp Server, Acrobat and Reader, InDesign, Photoshop, Bridge, FrameMaker Publishing Server, InCopy, Animate, Dimension, Media Encoder, Audition, Premiere pro, and After Effects. Highest CVSSv3 score of 9.8
More info.
Fortinet Monthly Patches include 20 bulletins, covering FortiGate, FGT_VM65_KVM, FortiWLM, FortiWAN, FortiSIEM, FortiOS, FortiProxy, FortiProxy VM, FortiMail, FortiEDRCollector, FortiClient for Windows, FortiADC, FortiDDoS-F, Highest CVSSv3 score of 9.3.
More info.
Cloud Director Appliance contains an authentication bypass vulnerability in ssh and appliance management control, if upgraded. CVSSv3 score of 9.8
More info.
HPE has published updates for Aruba access points running InstantOS and ArubaOS 10 that address multiple security vulnerabilities. Highest CVSSv3 score of 9.8
Some versions are EoL and not fixed.
More info.
Google has updated Chrome for Desktop to fix 4 security vulnerabilities.
More info.
Google has updated ChromeOS to include several security fixes.
More info.
Intel has published 31 new bulletins, 4 of which can be exploited by a remote attacker. The products with remote exploits include OpenVINO software, Data Center Manager, Unison software, and Connectivity Performance Suite. Highest CVSSv3 score of 10
More info.
F5 has reported that Traffix SDC is affected by a BIND vulnerability. CVSSv3 score of 7.5
No patch yet.
More info.
Comments