Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components. Reports indicate that active exploitation against the vulnerability in Microsoft Windows and Windows Server for privilege escalation have been observed.
VMware has published a security advisory to address a remote code execution vulnerability in OpenSLP that was used in VMware ESXi and Horizon Desktop-as-a-service (DaaS) appliance.
A vulnerability in the ISC BIND software could make it fail to effectively limit the number of concurrent TCP clients for avoiding resource overloading.
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components. Reports indicate that active exploitation against the vulnerability in Microsoft Internet Explorer for remote code execution have been observed.
Oracle has released Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.
Microsoft has released out-of-band security updates addressing the vulnerabilities found in the Internet Explorer and Microsoft Defender. Reports indicate that active exploitation against the vulnerability in Microsoft Internet Explorer for remote code execution has been observed.
Microsoft has released security updates addressing multiple vulnerabilities which affect several Microsoft products or components. Potential attackers are likely to exploit the Remote Desktop Services vulnerabilities for remote code execution.
Oracle has released Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.
Mozilla has published security advisories to address multiple vulnerabilities found in Firefox. Reports indicate that the vulnerabilities allow an attacker to run arbitrary code.
Intel has recently disclosed a new group of vulnerabilities collectively known as Microarchitectural Data Sampling (MDS) affecting some Intel processors.
A security vulnerability has been identified in WhatsApp which would allow a remote attacker to install malicious code such as spyware, on a targeted mobile device by making a WhatsApp call.
Dell released a security update to address multiple vulnerabilities in Dell SupportAssist Client installed on some Dell devices. The researcher who discovered the remote code execution vulnerability has recently released the proof-of-concept but fully workable exploit code on the Internet.
Cisco released security advisories to address the vulnerabilities in Cisco Adaptive Security Appliance (ASA) software and Cisco Firepower Threat Defense (FTD) software.
Security researchers discovered a remote code execution vulnerability in wls9_async and wls-wsat components, which are included in the Oracle WebLogic Server.
Oracle has released Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.
Microsoft has released security updates addressing multiple vulnerabilities and which affect several Microsoft products or components. Reports indicate active exploitation against the vulnerabilities in Microsoft Windows have been observed.
VMware has published a security advisory to address multiple vulnerabilities in virtual USB 1.1 UHCI (Universal Host Controller Interface), virtual network adapters and VMware Tools.
Google released a security update to address a use-after-free vulnerability in the FileReader application programming interface (API) of the Google Chrome.
Multiple vulnerabilities were found in "EDNS", "managed-keys" and "Dynamically Loadable Zones" features of the Internet Systems Consortium (ISC) BIND software.
Drupal released security updates to fix the vulnerability resided in the Drupal Core and its modules. Report indicates that active exploitation against the vulnerability has been observed.
Apple has released a security update in its latest iOS version 12.1.4 to fix 4 vulnerabilities identified in various iOS devices. Report indicates that active exploitation against the vulnerabilities in Apple iOS have been observed.
Oracle has released Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products.
