Apple releases patch for “unc0ver” jailbreak zero-day vulnerability

Apple has released a patch for a previously disclosed "Unc0ver" jailbreak 0-day vulnerability. The security updates and patch address iOS 13.5.1, macOS Catalina 10.15.5 Supplemental Update, watchOS 6.2.6, tvOS 13.4.6 and other products.

Continue Reading Apple releases patch for “unc0ver” jailbreak zero-day vulnerability

VMware patches multiple vulnerabilities in ESXi, Workstation, Fusion, VMRC and Horizon Client

VMware issued a security advisory for multiple vulnerabilities that impact VMware ESXi, Workstation, Fusion, VMRC and Horizon Client products. An attacker could exploit one of these vulnerabilities and take control of an unpatched system.

Continue Reading VMware patches multiple vulnerabilities in ESXi, Workstation, Fusion, VMRC and Horizon Client

Microsoft patches a privileged escalation vulnerability in Edge

Microsoft has issued an out-of-band patch for a privileged escalation vulnerability in Microsoft Edge (Chromium-based). Microsoft said the vulnerability CVE-2020-1195 exists in Edge when the Feedback extension improperly validates input.

Continue Reading Microsoft patches a privileged escalation vulnerability in Edge