Security Advisories

Please see Security Advisories for the week ending November 26, 2021 VMware Releases Security Updates for vCenter and Cloud Formation ISA Releases Capacity Enhancement Guides to Enhance Mobile Device Cybersecurity for Consumers and Organizations APT Exploitation of ManageEngine ADSelfService Plus Vulnerability _______________________________ VMware Releases Security Updates Situation VMware has released security updates to address multiple vulnerabilities in vCenter Server and Cloud Foundation. Problem The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file… Read More

CRITICAL Advisory: VMware Recalls ESXi 7 Update 3 From It’s Product Downloads Site Situation VMware has removed its latest ESXi release for version 7, Update 3 from its download service, due to driver interoperability problems that could cause failures during upgrades. Problem VMware’s investigation found some partner driver interoperability problems which prevented certain upgrade paths from completing in some customer environments. Specifically, driver VIB changes caused naming collisions in ESXi. This… Read More

Please see Security Advisories for the week ending November 19, 2021 CISA Has Updated the Catalog of Known Exploited Vulnerabilities NCSC Releases 2021 Annual Review Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities VMware Releases Security Update for Tanzu Application Service for VMs Apple Releases Security Update for iCloud for Windows 13 CISA Releases Advisory on Vulnerabilities in Multiple Data Distribution Service Implementations VMware Releases Security Advisory For… Read More

Palo Alto Networks Security Advisories – November 10, 2021 Samba Releases Security Updates Adobe Releases Security Updates for Multiple Products Severe Microsoft Exchange Server Bug Patched Microsoft Has Released November 2021 Security Updates CISA Releases Security Advisory on Siemens Nucleus Real-Time Operating Systems SAP Releases November 2021 Security Updates Citrix Releases Security Updates Security Researchers Reveal Activity Targeting ManageEngine ADSelfService Plus _______________________________ Palo Alto Networks Security Advisories – November 10,… Read More

Please see Security Advisories for the week ending November 5, 2021 Cisco Releases Security Updates for Multiple Products BrakTooth Proof of Concept Tool Demonstrates Bluetooth Vulnerabilities Mozilla Releases Security Updates for Firefox and Firefox ESR _______________________________ Cisco Releases Security Updates for Multiple Products Situation Cisco has released security updates for multiple products including Cisco Policy Suite, Cisco Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT), Cisco Small Business Series… Read More

Please see Security Advisories for the week ending October 29, 2021 Google Releases Security Updates for Chrome GoCD Authentication Vulnerability 2021 CWE Most Important Hardware Weaknesses NSA-CISA Series on Securing 5G Cloud Infrastructures ISC Releases Security Advisory for BIND Cisco Releases Security Updates for Multiple Products Adobe Releases Security Updates for Multiple Products FBI Releases Indicators of Compromise Associated with Ranzy Locker Ransomware Apple Releases Security Updates for Multiple Products APT… Read More

Please see Security Advisories for the week ending October 22, 2021 GPS Daemon (GPSD) Rollover Bug Cisco Releases Security Updates for IOS XE SD-WAN Software Google Releases Security Updates for Chrome Oracle Releases October 2021 Critical Patch Update _______________________________ GPS Daemon (GPSD) Rollover Bug Situation Cisco has released security updates to address a vulnerability in IOS XE SD-WAN Software, which could allow an authenticated, local attacker to execute arbitrary commands with root privileges…. Read More

Please see Security Advisories for the week ending October 15, 2021   Apache Releases Security Advisory for Tomcat Juniper Networks Releases Security Updates for Multiple Products Adobe Releases Security Updates for Multiple Products Microsoft Releases October 2021 Security Updates Apple Releases Security Update to Address CVE-2021-30883 NSA Releases Guidance on Avoiding the Dangers of Wildcard TLS Certificates and ALPACA Techniques CISA Has Released Two Industrial Control Systems Advisories CISA, FBI, and… Read More

Please see Security Advisories for the week ending October 1, 2021 VMware vCenter Server Vulnerability CVE-2021-22005 Under Active Exploit Google Releases Security Updates for Chrome Apple Releases Security Updates for Multiple Products Cisco Releases Security Updates for Multiple Products CISA, FBI, and NSA Release Joint Cybersecurity Advisory on Conti Ransomware NETGEAR Releases Security Updates for RCE Vulnerability _______________________________ VMware vCenter Server Vulnerability CVE-2021-22005 Under Active Exploit Situation On September 21, 2021, VMware disclosed… Read More