The Mozilla Foundation has patched four High risk vulnerabilities in Firefox 93, as well as added security feature that blocks unsafe downloads.
The Apache HTTP Server Foundation has patched a path traversal and file disclosure vulnerability (CVE-2021-41773) in Apache HTTP Server 2.4.49.
Google has released Chrome 94 security update (94.0.4606.71) with patches for 2 zero-day vulnerabilities (CVE-2021-37975 and CVE-2021-37976) exploited in the wild.
Cisco has fixed three Critical risk Cisco IOS XE Software vulnerabilities in multiple network products, as well as three High risk SD-WAN vEdge vulnerabilities.
VMware issued a security advisory for multiple vulnerabilities that impact VMware vCenter Server. One of those fixed issues is a Critical vulnerability (CVE-2021-22005) exploited in the wild.
Apple has released security updates to fix vulnerabilities in iOS 12.5.5 and macOS Catalina. The tech giant also warned of active exploits in the wild against some vulnerabilities.
Google has released Chrome 94 security update (94.0.4606.61) with a fix for one zero-day vulnerability CVE-2021-37973 under attack.
Apple has released security updates to fix vulnerabilities in iOS 15, Safari 15, watchOS 8, iTunes 12.12 for Windows, Xcode 13, and tvOS 15.
Microsoft has published new guidance on Open Management Infrastructure (OMI) vulnerabilities within Azure virtual management (VM) Management extensions.
Drupal has patched five Moderately Critical cross site request forgery and access bypass vulnerabilities that affect multiple versions of Drupal Core.