- Mozilla Releases Security Updates for Firefox 110 and Firefox ESR
- Cisco Releases Security Advisories for Multiple Products
- Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops
- Microsoft Releases February 2023 Security Updates
- Apple Releases Security Updates for Multiple Products
_______________________________
Mozilla Releases Security Updates for Firefox 110 and Firefox ESR
Situation:
Mozilla has released security updates to address vulnerabilities in Firefox 110 and Firefox ESR.
Problem:
Mozilla has discovered multiple vulnerabilities in Firefox 110 and Firefox ESR that could allow attackers can compromise the systems.
Implication:
An attacker could exploit these vulnerabilities to take control of an affected system.
Need:
We encourage users and administrators to review Mozilla’s security advisories for Firefox 110 and Firefox ESR 102.8 for more information and apply the necessary updates.
Additional Resources:
Mozilla Releases Security Updates for Firefox 110 and Firefox ESR:
https://www.cisa.gov/uscert/ncas/current-activity/2023/02/14/mozilla-releases-security-updates-firefox-110-and-firefox-esr
Mozilla Foundation Security Advisory 2023-05:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-05/
Mozilla Foundation Security Advisory 2023-06:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-06/
________________________________
Cisco Releases Security Advisories for Multiple Products
Situation:
Cisco has released security advisories for vulnerabilities affecting multiple Cisco products.
Problem:
A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code.
A vulnerability in the DNS functionality of Cisco Nexus Dashboard Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
Multiple vulnerabilities in the web UI and CLI of Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager could allow an authenticated attacker to perform injection attacks or elevate privileges.
Implication:
A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
Need:
We encourage users and administrators to review the following advisories and apply the necessary updates.
- ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023 cisco-sa-clamav-q8DThCy
- Cisco Nexus Dashboard Denial of Service Vulnerability cisco-sa-ndb-dnsdos-bYscZOsu
- Cisco Email Security Appliance and Cisco Secure Email and Web Manager Vulnerabilities cisco-sa-esa-sma-privesc-9DVkFpJ8
Additional Resources:
Cisco Releases Security Advisories for Multiple Products
https://www.cisa.gov/uscert/ncas/current-activity/2023/02/16/cisco-releases-security-advisories-multiple-products
ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-q8DThCy
Cisco Nexus Dashboard Denial of Service Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ndb-dnsdos-bYscZOsu
Cisco Email Security Appliance and Cisco Secure Email and Web Manager Vulnerabilities
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-privesc-9DVkFpJ8
________________________________
Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops
Situation:
Citrix has released security updates to address high-severity vulnerabilities (CVE-2023-24486, CVE-2023-24484, CVE-2023-24485, and CVE-2023-24483) in Citrix Workspace Apps, Virtual Apps and Desktops.
Problem:
Multiple vulnerabilities have been discovered in Citrix Virtual Apps, Citrix Workspace app and Desktops Windows VDA that allow local users to elevate their privileges and perform operations as SYSTEM.
Implication:
A local user could exploit these vulnerabilities to take control of an affected system.
Need:
These issues have been addressed in the following versions of Citrix Workspace app and Citrix Virtual Apps for Windows:
- Citrix Workspace App 2212 and later
- Citrix Workspace App 2203 LTSR CU2 and later cumulative updates
- Citrix Workspace App 1912 LTSR CU7 Hotfix 2 (19.12.7002) and later cumulative updates
- Citrix Virtual Apps and Desktops 2212 and later versions
- Citrix Virtual Apps and Desktops 2203 LTSR CU2 and later cumulative updates
- Citrix Virtual Apps and Desktops 1912 LTSR CU6 and later cumulative updates
- Citrix Workspace app for Linux 2302 and later
We strongly recommend that customers upgrade to a fixed version as soon as possible.
Additional Resources:
Title for Link:
https://www.cisa.gov/uscert/ncas/current-activity/2023/02/14/citrix-releases-security-updates-workspace-apps-virtual-apps-and
Title for Link:
https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485
Title for Link:
https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483
Title for Link:
https://support.citrix.com/article/CTX477618/citrix-workspace-app-for-linux-security-bulletin-for-cve202324486
________________________________
Microsoft Releases February 2023 Security Updates
Situation:
Microsoft has released security updates for multiple Microsoft Sofware.
Problem:
Microsoft has stated that vulnerabilities in multiple Microsoft Software appliactions exist and patches have been released. Please see advisory for complete list.
Implication:
An attacker can exploit these vulnerabilities to take control of an affected system.
Need:
We encourage users and administrators to review Microsoft’s February 2023 Security Update Guide & Deployment Information and apply the necessary updates.
Additional Resources:
Microsoft’s February 2023 Security Update Guide Link:
https://msrc.microsoft.com/update-guide/releaseNote/2023-Feb
Deployment Information Link:
https://msrc.microsoft.com/update-guide/deployments
________________________________
Apple Releases Security Updates for Multiple Products
Situation:
Apple has released multiple security updates.
Problem:
Vulnerabilities in multiple products.
• Safari 16.3.1
Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
• iOS 16.3.1 and iPadOS 16.3.1
An app may be able to execute arbitrary code with kernel privileges
• macOS 13.2.1
An app may be able to execute arbitrary code with kernel privileges
Implication:
An attacker could exploit these vulnerabilities to take control of an affected device.
Need:
We encourage users and administrators to review the Apple security updates page for the following products and apply the necessary updates as soon as possible.
Additional Resources:
Safari 16.3.1:
https://support.apple.com/en-us/HT213638
iOS 16.3.1 and iPadOS 16.3.1:
https://support.apple.com/en-us/HT213635
macOS 13.2.1:
https://support.apple.com/en-us/HT213633