Vulnerability Posts
VMware vCenter updates
VMware vCenter users are encouraged to review the information for VMSA-2023-0023.1 and ensure they are running vCenter version that are not impacted by the vulnerabilities (CVE-2023-34048 and CVE-2023-34056)
Update web browsers including Chrome and Firefox
Google has released updates to remediate known exploited issues in their browser. Please update Chrome to versions higher than 120.0.6099.224 to prevent attacks using CVE-2024-0519. Please review vendor specific notices for browsers derived from Chrome including...
November MS Patch Vulnerabilities
Recommending expedited patching for any system using Microsoft MQ, Azure CLI, or Hyper-V. There are critical rated patches for impacting these systems. Normal patching and testing for all other services. There are Microsoft Office patches as well so please...
October MS Patch Vulnerabilities
Recommending expedited patching for any system using Microsoft MQ, Microsoft Exchange, or the Routing and Remote Access Service . There are 9 critical rated patches for Routing and Remote Access Service and 15 for MS MQ. Please patch as soon as possible if using...
Security Vulnerability fixed in Firefox 117.0.1, Firefox ESR 115.2.1, Firefox ESR 102.15.1, Thunderbird 102.15.1, and Thunderbird 115.2.2
Please update to the latest version of these Mozilla products. A vulnerability that allows remote code execution has been fixed. Please review this Mozilla advisory for additional details and remediation guidance.
Actively exploited vulnerabilities in Adobe Acrobat and Reader
This vulnerability can be exploited for remote code execution. Please review the Adobe advisory and update your software if either product is installed.
Chrome Update Available
A Chrome browser vulnerability has been released that can be use to execute remote code on systems. The following versions are impacted: Chrome versions prior to 116.0.5845.180 for Windows Chrome versions prior to 116.0.5845.187/.188 for Mac and Linux Please update...
Update Firefox to latest version available
Mozilla has released patches including a fix to an issue that enables an attacker to execute code remotely. Please update to the latest version of Firefox(116 or higher for most systems) or Firefox ESR (115.1 or 102.14 or higher). Review the Firefox 116, Firefox ESR...
Updates for Apple iOS/iPadOS 16.5.1 and macOS Ventura 13.4.1
Apple has released Rapid Security Response patch (c) for iOS/iPadOS 16.5.1 and macOS Ventura 13.4.1 The vulnerability CVE-2023-37450 impacts WebKit browsers. Your device can be compromised by visiting a site with no additional confirmations required. Please update and...
Update Firefox and Thunderbird to latest version available
Mozilla has released patches including a fix to an issue that enables an attacker to load content without a click from a user. Please update to the latest version of Firefox(115 or higher for most systems) and Thunderbird (102.13 or higher) if installed. Review the...