- Palo Alto Networks Security Advisories – April 2023
- Fortinet Releases April 2023 Vulnerability Advisories
- Adobe Releases Security Updates for Multiple Products
- Microsoft Releases April 2023 Security Updates
- Apple Releases Security Updates for Multiple Products
- Mozilla Releases Security Advisories for Multiple Products
_______________________________
Palo Alto Networks Security Advisories – April 2023
Situation:
Palo Alto Networks has published three new Security Advisories regarding vulnerabilities affecting their PAN-OS software and GlobalProtect App.
Problem:
The security advisories include the following vulnerabilities:
CVE-2023-0004 PAN-OS: Local File Deletion Vulnerability
CVE-2023-0005 PAN-OS: Exposure of Sensitive Information Vulnerability
CVE-2023-0006 GlobalProtect App: Local File Deletion Vulnerability
Implication:
The vulnerabilities in the PAN-OS software can lead to an authenticated administrator to delete files from the local file system with elevated privileges and to expose the plaintext values of secrets stored in the device configuration and encrypted API keys.
As for the vulnerabilities affecting GlobalProtect App on Windows devices, they can enable a user to delete system files from the endpoint with elevated privileges through a race condition.
Need:
You can mitigate the impact of this issue by following best practices for securing the PAN-OS management interface.
Please review the Best Practices for Securing Administrative Access in the PAN-OS technical documentation at https://docs.paloaltonetworks.com/best-practices.
The issue regarding CVE-2023-0004 and CVE-2023-0005 is fixed in PAN-OS 8.1.24, PAN-OS 9.0.17, PAN-OS 9.1.15, PAN-OS 10.0.12, PAN-OS 10.1.8, PAN-OS 10.2.3, and all later PAN-OS versions.
The issue regarding CVE-2023-0006 is fixed in GlobalProtect app 5.2.13, GlobalProtect app 6.0.4, GlobalProtect app 6.1.1, and all later GlobalProtect app versions on Windows devices
Additional Resources:
Security Palo Alto Network:
https://security.paloaltonetworks.com/
CVE-2023-0004 PAN-OS: Local File Deletion Vulnerability:
https://security.paloaltonetworks.com/CVE-2023-0004
CVE-2023-0005 PAN-OS: Exposure of Sensitive Information Vulnerability:
https://security.paloaltonetworks.com/CVE-2023-0005
CVE-2023-0006 GlobalProtect App: Local File Deletion Vulnerability:
https://security.paloaltonetworks.com/CVE-2023-0006
Palo Alto Networks Best Practices
https://docs.paloaltonetworks.com/best-practices
________________________________
Fortinet Releases April 2023 Vulnerability Advisories
Situation:
Fortinet has released its April 2023 Vulnerability Advisories to address vulnerabilities affecting multiple products.
Problem:
Fortinet addressed multiple vulnerabilities in their advisory that deals with their products. These products include:
- FortiSOAR
- FortiClient (Mac)
- FortiNAC
- FortiADC & FortiDDoS & FortiDDoS-F
- FortiClient (Windows)
- FortiPresence
- FortiWeb
- FortiOS & FortiProxy
- FortiAnalyzer
- FortiSandbox / FortiDeceptor
The following products include some of these vulnerabilities:
- Server-side Template Injection in playbook execution
- Arbitrary file creation from unprivileged users due to process impersonation
- Unpassworded remotely accessible Redis & MongoDB
- Cross Site Scripting vulnerabilities in administrative interface
For the full list of vulnerabilities, please check the April 2023 Vulnerability Advisories
Implication:
An attacker could exploit one of these vulnerabilities to take control of an affected system.
Need:
We encourage users and administrators to review the Fortinet April 2023 Vulnerability Advisories page for more information and apply the necessary updates.
Additional Resources:
Fortinet Releases April 2023 Vulnerability Advisories:
https://www.cisa.gov/news-events/alerts/2023/04/11/fortinet-releases-april-2023-vulnerability-advisories
April 2023 Vulnerability Advisories:
https://www.fortiguard.com/psirt-monthly-advisory/april-2023-vulnerability-advisories
________________________________
Adobe Releases Security Updates for Multiple Products
Situation:
Adobe has released security updates to address multiple vulnerabilities in Adobe software.
Problem:
An attacker can exploit these vulnerabilities to take control of an affected system.
Implication:
If disregarded, attackers can exploit the companies’ network and cause businesses to suffer financial hardship.
Need:
We encourage users and administrators to review the following advisories and apply the necessary updates:
Digital Editions APSB23-04
InCopy APSB23-13
Acrobat and Reader APSB23-24
Substance 3D Stager APSB23-26
Dimension APSB23-27
Substance 3D Designer APSB23-28
Additional Resources:
Adobe Releases Security Updates for Multiple Products:
https://www.cisa.gov/news-events/alerts/2023/04/11/adobe-releases-security-updates-multiple-products
Digital Editions APSB23-04:
https://helpx.adobe.com/security/products/Digital-Editions/apsb23-04.html
InCopy APSB23-13:
https://helpx.adobe.com/security/products/incopy/apsb23-13.html
Acrobat and Reader APSB23-24:
https://helpx.adobe.com/security/products/acrobat/apsb23-24.html
Substance 3D Stager APSB23-26:
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-26.html
Dimension APSB23-27
https://helpx.adobe.com/security/products/dimension/apsb23-27.html
Substance 3D Designer APSB23-28
https://helpx.adobe.com/security/products/substance3d_designer/apsb23-28.html
________________________________
Microsoft Releases April 2023 Security Updates
Situation:
Microsoft has released updates to address multiple vulnerabilities in Microsoft software.
Problem:
An attacker can exploit some of these vulnerabilities to take control of an affected system.
Implication:
If these issues are overlooked, an attacker can capitalize on the vulnerabilities of a companies’ network. As a result, businesses can suffer immensely.
Need:
We encourage users and administrators to review Microsoft’s April 2023 Security Update Guide and Deployment Information and apply the necessary updates.
For a full list of the updates and vulnerabilities, please refer to the links below.
Additional Resources:
Microsoft Releases April 2023 Security Updates:
https://www.cisa.gov/news-events/alerts/2023/04/11/microsoft-releases-april-2023-security-updates
April 2023 Security Updates:
https://msrc.microsoft.com/update-guide/releaseNote/2023-Apr
Vulnerabilities Security Update Guide
https://msrc.microsoft.com/update-guide/deployments
________________________________
Apple Releases Security Updates for Multiple Products
Situation:
Apple has released security updates to address vulnerabilities in multiple products.
Problem:
An attacker could exploit some of these vulnerabilities to take control of an affected device.
Implication:
If disregarded, an attacker can exploit the companies’ system and render the business useless.
Need:
CISA encourages users and administrators to review the following advisories and apply the necessary updates.
iOS 15.7.5 and iPadOS 15.7.5
macOS Monterey 12.6.5
macOS Big Sur 11.7.6
Safari 16.4.1
iOS 16.4.1 and iPadOS 16.4.1
macOS Ventura 13.3.1
Additional Resources:
Apple Releases Security Updates for Multiple Products:
https://www.cisa.gov/news-events/alerts/2023/04/11/apple-releases-security-updates-multiple-products
iOS 15.7.5 and iPadOS 15.7.5:
https://support.apple.com/en-us/HT213723
macOS Monterey 12.6.5
https://support.apple.com/en-us/HT213724
macOS Big Sur 11.7.6
https://support.apple.com/en-us/HT213725
Safari 16.4.1
https://support.apple.com/en-us/HT213722
iOS 16.4.1 and iPadOS 16.4.1
https://support.apple.com/en-us/HT213720
macOS Ventura 13.3.1
https://support.apple.com/en-us/HT213721
________________________________
Mozilla Releases Security Advisories for Multiple Products
Situation:
Mozilla has released security advisories for vulnerabilities affecting multiple Mozilla products.
Problem:
A cyber threat actor could exploit these vulnerabilities to take control of an affected system.
Implication:
If this issue is disregarded, an attacker can crash a companies’ network making it difficult to continue business operations.
Need:
CISA encourages users and administrators to review the following advisories and apply the necessary updates:
Security Vulnerabilities fixed in Firefox 112, Firefox for Android 112, Focus for Android 112 Mozilla Foundation Security Advisory 2023-13
Security Vulnerabilities fixed in Firefox ESR 102.10 Mozilla Foundation Security Advisory 2023-14
Security Vulnerabilities fixed in Thunderbird 102.10 Mozilla Foundation Security Advisory 2023-15
Additional Resources:
Mozilla Releases Security Advisories for Multiple Products
https://www.cisa.gov/news-events/alerts/2023/04/11/mozilla-releases-security-advisories-multiple-products
Security Vulnerabilities fixed in Firefox 112, Firefox for Android 112, Focus for Android 112:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-13/
Security Vulnerabilities fixed in Firefox ESR 102.10 Mozilla Foundation Security Advisory 2023-14:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-14/
Security Vulnerabilities fixed in Thunderbird 102.10 Mozilla Foundation Security Advisory 2023-15:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-15/