Vulnerabilities

Google releases Chrome 104 security update with fixes for 11 vulnerabilities (1 zero-day CVE-2022-2856)

Google has released Chrome 104.0.5112.101 (Mac/Linux) and 104.0.5112.102/101 (Windows), with fixes for 11 vulnerabilities (one rated Critical and seven rated High severity). Additionally, one of the patches fixed a zero-day flaw CVE-2022-2856.

Google releases Chrome 104 security update with fixes for 11 vulnerabilities (1 zero-day CVE-2022-2856) Read More »

CISA adds Critical Microsoft diagnostics tool vulnerability to Catalog of exploited vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) has added one Microsoft Support Diagnostic Tool (MSDT) vulnerability CVE-2022-30190 (aka “Follina”) to its Known Exploited Vulnerabilities Catalog.

CISA adds Critical Microsoft diagnostics tool vulnerability to Catalog of exploited vulnerabilities Read More »

Microsoft June 2022 Security Updates addresses 55 vulnerabilities (3 Critical)

The Microsoft June 2022 Security Updates includes patches and advisories for 55 vulnerabilities, three of those rated Critical severity.

Microsoft June 2022 Security Updates addresses 55 vulnerabilities (3 Critical) Read More »

Google releases Chrome 102 (102.0.5005.115) security updates with fixes for 4 High severity vulnerabilities

eleased Chrome version 102.0.5005.115 for Windows, Mac and Linux, with fixes for seven vulnerabilities (four rated High severity).

Google releases Chrome 102 (102.0.5005.115) security updates with fixes for 4 High severity vulnerabilities Read More »

CISA adds 75 vulnerabilities to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added more than 75 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Cisco, Microsoft, Adobe, Oracle, Linux vulnerabilities and more.

CISA adds 75 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »

Microsoft releases emergency patches for Exchange Server RCE vulnerabilities exploited in the wild (Updated)

Microsoft has released emergency out-of-band security updates to fix multiple Critical vulnerabilities impacting Microsoft Exchange Server 2013, 2016 and 2019, collectively known as “ProxyLogon.” The tech giant also published interim mitigations if organizations can not patch immediately, as well as an IOC detection tool.

Microsoft releases emergency patches for Exchange Server RCE vulnerabilities exploited in the wild (Updated) Read More »