Juniper patches multiple vulnerabilities in Junos OS and other products (July 2021)

Juniper Networks has released security advisories to fix many vulnerabilities on Junos OS, EX4300, PTX Series, QFX Series, SRX Series network devices and multiple other products.

Continue ReadingJuniper patches multiple vulnerabilities in Junos OS and other products (July 2021)

Microsoft July 2021 Security Updates includes fixes for 13 Critical RCEs, 3 zero-day vulnerabilities

Microsoft has released the July 2021 Security updates that includes patches for 117 vulnerabilities, 13 of those rated Critical. The updates also include fixes for 3 zero-day bugs exploited in the wild.

Continue ReadingMicrosoft July 2021 Security Updates includes fixes for 13 Critical RCEs, 3 zero-day vulnerabilities

Critical ForgeRock Access Management vulnerability (CVE-2021-35464) exploited

A Critical ForgeRock Access Management (AM) vulnerability (CVE-2021-35464) has been exploited in the wild. The issue affects ForgeRock's OpenAM, open-source AM solution.

Continue ReadingCritical ForgeRock Access Management vulnerability (CVE-2021-35464) exploited

Cisco warns of active exploits against Cisco ASA XSS vulnerability (CVE-2020-3580)

Cisco issued issued an updated advisory warning of active exploits in the wild against a Cisco security appliance XSS vulnerability CVE-2020-3580. Proof of concept (PoC) exploit code has also been released to the public.

Continue ReadingCisco warns of active exploits against Cisco ASA XSS vulnerability (CVE-2020-3580)