Security Updates & Patches Archives - Page 3 of 86

Android Security Bulletin December 2022 fixes 80 vulnerabilities (4 Critical)

Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / December 7, 2022 December 7, 2022 / Android, CVE-2022-20411, CVE-2022-20472, CVE-2022-20473, CVE-2022-20498

Google has released its Android Security Bulletin for December 2022 with details of security vulnerabilities (four rated Critical severity) affecting Android devices.

Google fixes Chrome 108 zero-day vulnerability (CVE-2022-4262) exploited in the wild

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / December 4, 2022 December 4, 2022 / Chrome, CVE-2022-4262, Zero-day

Google has released Chrome 108.0.5359.94 for Mac and Linux and 108.0.5359.94/.95 for Windows with a fix for a High severity zero-day vulnerability (CVE-2022-4262) exploited in the wild.

Mozilla releases Firefox 107 with fixes for 8 High severity vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 20, 2022 November 20, 2022 / CVE-2022-45403, CVE-2022-45404, CVE-2022-45405, CVE-2022-45406, CVE-2022-45407, CVE-2022-45408, CVE-2022-45409, CVE-2022-45421, Firefox 107, Mozilla

The Mozilla Foundation has patched eight High risk vulnerabilities in Firefox 107, as well as a number of other bug fixes.

ProxyNotShell POC exploit code released

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 20, 2022 November 20, 2022 / CVE-2021-34473, CVE-2022-41040, CVE-2022-41082, Exploit, POC, ProxyNotShell, ProxyShell

A security researcher has released proof-of-concept (PoC) exploit code for Microsoft Exchange ProxyNotShell vulnerabilities (CVE-2022-41040 and CVE-2022-41082).

CISA adds 7 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Windows and Samsung vulnerabilities)

Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 12, 2022 November 20, 2022 / CVE-2021-25337, CVE-2021-25369, CVE-2021-25370, CVE-2022-41073, CVE-2022-41091, CVE-2022-41125, CVE-2022-41128, Samsung, Windows

The Cybersecurity and Infrastructure Security Agency (CISA) has added seven (7) vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Microsoft Windows and Samsung vulnerabilities.

Messaging Security, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / November 11, 2022 November 11, 2022 / CVE-2022-3602, CVE-2022-3786, CVE-2022-41040, CVE-2022-41073, CVE-2022-41082, CVE-2022-41091, CVE-2022-41125, CVE-2022-41128, Exchange, ProxyNotShell

The Microsoft November 2022 Security Updates includes patches and advisories for 65 vulnerabilities, including 6 zero-days and 10 Critical severity issues.

Cisco released security advisory for OpenSSL vulnerabilities affecting Cisco products

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 5, 2022 November 5, 2022 / Cisco, CVE-2022-3602, CVE-2022-3786, IOT, OpenSSL, X.509

Cisco has released a security advisory for OpenSSL vulnerabilities affecting Cisco products.

Apple releases security update for Xcode 14.1

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 5, 2022 November 5, 2022 / Apple, CVE-2022-29187, CVE-2022-39253, CVE-2022-39260, CVE-2022-42797, Xcode, Xcode 14.1

Apple has released a security update for Xcode 14.1 with fixes for multiple vulnerabilities.

Security Updates & Patches