Highlights and Updates

Google Releases Security Updates for Chrome

Wednesday, 26th August 2020

Google has released Chrome version 85.0.4183.83 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

We encourage users and administrators to review the Chrome Release and apply the necessary updates.

Cisco Releases Security Updates

Thursday, 20th August 2020

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page.

We encourage users and administrators to review the following Cisco Advisories and apply the necessary updates:

·        Cisco vWAAS for Cisco ENCS 5400-W Series and CSP 5000-W Series Default Credentials Vulnerability cisco-sa-waas-encsw-cspw-cred-hZzL29A7

·        Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability cisco-sa-smart-priv-esca-nqwxXWBu

·        Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities cisco-sa-ipcameras-rce-dos-uPyJYxN3

Google Releases Security Updates for Chrome

Wednesday, 19th August 2020

Google has released Chrome version 84.0.4147.135 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.

We encourage users and administrators to review the Chrome Release Note and apply the necessary updates.

Microsoft Releases August 2020 Security Updates

Tuesday, 11th August 2020

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Microsoft’s August 2020 Security Update Summary and Deployment Information and apply the necessary updates.

Adobe Releases Security Updates

Tuesday, 11th August 2020

Adobe has released security updates to address vulnerabilities affecting Adobe Acrobat, Reader,and Lightroom. An attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Adobe Security Bulletin APSB20-48 and APSB20-51 and apply the necessary updates.

Apple Releases Security Updates for iCloud for Windows

Tuesday, 11th August 2020

Apple has released security updates to address vulnerabilities in iCloud for Windows 7.20 (for Windows 7 and later) and 11.3 (for Windows 10 and later). An attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review the Apple security pages for iCloud 7.20 and iCloud11.3 and apply the necessary updates.

Cisco Releases Security Updates for Multiple Products

Thursday, 6th August 2020

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit one of these vulnerabilities to take obtain sensitive information.

The Cyber security and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Advisories and apply the necessary updates:

·        Small Business Smart and Managed Switches Denial of Service Vulnerability cisco-sa-sbss-ipv6-dos-3bLk6vA

·        DNA Center Information Disclosure Vulnerability cisco-sa-dna-info-disc-3bz8BCgR

·        StarOS IPv6 Denial of Service Vulnerability cisco-sa-asr-dos-zJLJFgBf

·        Any Connect Secure Mobility Client for Windows DLL Hijacking Vulnerability cisco-sa-anyconnect-dll-F26WwJW

·        For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.

Citrix Releases Security Updates for Workspace App for Windows

Thursday, 23rd July 2020

Citrix has released security updates to address a vulnerability in Workspace app for Windows.  A remote attacker could exploit this vulnerability to take control of an affected system if Windows Server Message Block (SMB) is enabled.

We recommend users and administrators review Citrix Security Bulletin CTX277662 and apply the necessary updates.

Cisco Releases Security Updates for ASA and FTD Software

Wednesday, 22nd July 2020

Cisco has released security updates to address a vulnerability in Adaptive Security Appliance(ASA) Software and Firepower Threat Defense (FTD) Software Web Service. A remote attacker could exploit this vulnerability to obtain sensitive information.

We encourage users and administrators to review Cisco Security Advisory cisco-sa-asaftd-ro-path-KJuQhB86 for more information and apply the necessary updates.

Adobe Releases Security Updates

Wednesday, 22nd July 2020

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review the following Adobe Security Bulletins and apply the necessary updates.

·        Bridge APSB20-44

·        Photoshop APSB20-45

·        Prelude APSB20-46

·        Reader MobileAPSB20-50