Mozilla Releases Security Updates for Multiple Products 09/29/2023 02:00 PM EDT Mozilla has released security updates to address a vulnerability affecting Firefox, Firefox ESR, Firefox Focus for Android, and Firefox for Android. A cyber threat actor can exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review Mozilla’s… Continue reading Mozilla Releases Security Updates for Multiple Products
Month: September 2023
Vulnerability Summary for the Week of September 18, 2023
Vulnerability Summary for the Week of September 18, 2023 09/29/2023 12:00 PM EDT The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not… Continue reading Vulnerability Summary for the Week of September 18, 2023
Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products 09/28/2023 06:00 PM EDT Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. A remote cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply the necessary updates:… Continue reading Cisco Releases Security Advisories for Multiple Products
Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products 09/28/2023 02:00 PM EDT Apple has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply the necessary updates. Safari… Continue reading Apple Releases Security Updates for Multiple Products
CISA Releases Three Industrial Control Systems Advisories
09/28/2023 08:00 AM EDT CISA released three Industrial Control Systems (ICS) advisories on September 28, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-271-01 Rockwell Automation PanelView 800 ICSA-23-271-02 DEXMA DexGate ICSA-23-143-02 Hitachi Energy’s RTU500 Series Product (UPDATE A) CISA encourages users and administrators to review the newly released… Continue reading CISA Releases Three Industrial Control Systems Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog 09/28/2023 08:00 AM EDT CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-14667 Red Hat JBoss RichFaces Framework Expression Language Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to… Continue reading CISA Adds One Known Exploited Vulnerability to Catalog
NSA, FBI, CISA, and Japanese Partners Release Advisory on PRC-Linked Cyber Actors
NSA, FBI, CISA, and Japanese Partners Release Advisory on PRC-Linked Cyber Actors 09/27/2023 03:30 PM EDT Today, the U.S. National Security Agency (NSA), Federal Bureau of Investigation (FBI), and Cybersecurity and Infrastructure Security Agency (CISA), along with the Japan National Police Agency (NPA) and the Japan National Center of Incident Readiness and Strategy for Cybersecurity… Continue reading NSA, FBI, CISA, and Japanese Partners Release Advisory on PRC-Linked Cyber Actors
Mozilla Releases Security Advisories for Thunderbird and Firefox
Mozilla Releases Security Advisories for Thunderbird and Firefox 09/27/2023 03:00 PM EDT Mozilla has released security updates to address vulnerabilities for Thunderbird 115.3, Firefox ESR 115.3, and Firefox 118. A cyber threat actor could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Mozilla security advisories for Thunderbird… Continue reading Mozilla Releases Security Advisories for Thunderbird and Firefox
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog 09/26/2023 11:30 AM EDT CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-41991 Apple Multiple Products Improper Certificate Validation Vulnerability CVE-2023-41992 Apple Multiple Products Kernel Privilege Escalation Vulnerability CVE-2023-41993 Apple Multiple Products WebKit Code Execution Vulnerability These types… Continue reading CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog 09/26/2023 11:30 AM EDT CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-41991 Apple Multiple Products Improper Certificate Validation Vulnerability CVE-2023-41992 Apple Multiple Products Kernel Privilege Escalation Vulnerability CVE-2023-41993 Apple Multiple Products WebKit Code Execution Vulnerability These types… Continue reading CISA Adds Three Known Exploited Vulnerabilities to Catalog