Securezoo Cybersecurity Threat Center blog posts of new security updates and patches.
Apple has released a security update for Apple iOS 16.0.3 with a fix for a Mail vulnerability CVE-2022-22658. A remote attacker could exploit some of these vulnerabilities to take control of unpatched device.
Google has released its Android Security Bulletin for October 2022 with details of security vulnerabilities affecting Android devices.
Google has released Chrome 106 (106.0.5249.91) for Windows, Mac and Linux, with fixes for three vulnerabilities (two rated High severity).
The Cybersecurity and Infrastructure Security Agency (CISA) has added 3 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Microsoft Exchange and Atlassian flaws.
Drupal has patched a Critical Twig third-party library vulnerability (CVE-2022-39261) that affect multiple versions of Drupal Core.
Microsoft has released a new security update for two Microsoft Exchange Server zero-day vulnerabilities (CVE-2022-41040 and CVE-2022-41082) dubbed “ProxyNotShell” under limited targeted attacks in the wild.
Sophos has fixed a Sophos Firewall remote code execution (RCE) vulnerability (CVE-2022-3236) exploited in the wild.
The Internet Systems Consortium (ISC) has released new security updates that fix four High risk vulnerabilities in multiple versions of BIND, as well as BIND 9 Security Vulnerability Matrix.
The Mozilla Foundation has patched four High risk vulnerabilities in Firefox 105, as well as a number of other bug fixes.
Microsoft has released an out-of-band patch for a Endpoint Configuration Manager vulnerability CVE-2022-37972.
