Security Updates & Patches Archives

Google Releases Chrome 111 Update With Fixes For 7 High Risk Vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / March 21, 2023 / browser, Chrome, Chrome 111, Google

Google has released Chrome 111.0.5563.110 for Mac and Linux and Chrome 111.0.5563.110/.111 for Windows with fixes for seven High severity vulnerabilities.

Microsoft March 2023 Security Updates Fixes 101 Vulnerabilities (9 Critical, 2 zero-days)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / March 14, 2023 / CVE-2023-21708, CVE-2023-23392, CVE-2023-23397, CVE-2023-23404, CVE-2023-23411, CVE-2023-23415, CVE-2023-23416, CVE-2023-24880, ICMP, Outlook, RCE, SmartScreen, Windows

The Microsoft March 2023 Security Updates includes patches and advisories for 101 vulnerabilities, including 9 Critical severity issues and two zero-days exploited in the wild.

Adobe Security Updates For Multiple Products (one Zero day)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / March 14, 2023 / Adobe, ColdFusion, Commerce, Creative Cloud, CVE-2023-26360, Dimension, Experience Manager, Illustrator, Photoshop, Substance 3D Stager

Adobe has released eight advisories addressing multiple vulnerabilities in Adobe Commerce, Experience Manager, Illustrator, Dimension, Creative Cloud, Substance 3D Stager, Photoshop, and ColdFusion products.

Attackers Exploit Forta GoAnywhere Zero-day Vulnerability

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 17, 2023 / CVE-2023-0669, Forta, GoAnywhere, Zero-day

Attackers have been exploiting a Forta GoAnywhere zero-day vulnerability (CVE-2023-0669).

Microsoft February 2023 Security Updates addresses 79 vulnerabilities (9 rated Critical, 3 zero days)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 16, 2023 / CVE-2023-21715, CVE-2023-21823, CVE-2023-23376, PEAP, RCE

The Microsoft February 2023 Security Updates includes patches and advisories for 79 vulnerabilities, including 9 Critical severity remote code execution issues and three zero-days exploited in the wild.

Apple Fixes Exploited Zero-Day Vulnerability (CVE-2023-23529) in IOS, Safari and macOS

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 14, 2023 / Apple, CVE-2023-23529, iOS1631, macOS, Safari, Ventura, Webkit

Apple has released an emergency security update that fixes a zero-day exploited vulnerability (CVE-2023-23529) in iOS, Safari, and macOS, under attack in the wild.

OpenSSL patches multiple vulnerabilities (1 rated High severity)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / February 10, 2023 / CVE-2023-0286, OpenSSL, Vulnerabilities, X.509

OpenSSL has released a security update with fixes for one High risk vulnerability (CVE-2023-0286) and multiple other Moderate severity vulnerabilities.

VMware patches Critical vRealize vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / January 29, 2023 / CVE-2022-31704, CVE-2022-31706, Log Insight, VMware, vRealize

VMware has patched four vulnerabilities that affect VMware vRealize Log Insight. Two of the vulnerabilities are rated Critical, one High and one Medium severity.

ISC Fixes 4 High Risk BIND Vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / January 29, 2023 / CVE-2022-3094, CVE-2022-3488, CVE-2022-3736, CVE-2022-3924

The Internet Systems Consortium (ISC) has released new security updates that fix four High risk vulnerabilities in multiple versions of ISC Berkeley Internet Name Domain (BIND).

Apple patches vulnerabilities in iOS 16.3, macOS Ventura 13.2, and other products (plus zero-day in older iPhones)

Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / January 25, 2023 / Apple, CVE-2022-42856, iOS163, iPhone, macOS, Safari, Ventura, Ventura132

Apple has released security updates for Apple iOS 16.3, macOS Ventura 13.2, macOS Big Sur 11.7.3, Safari 16.3, and other products. In addition a zero-day iOS fix was also made available for older iPhones.