Microsoft issued the January 2019 Security Updates that include nearly 50 unique vulnerability fixes, 7 of them rated critical.
Attackers are using a variant of the infamous Mirai IoT botnet dubbed "Miori" to exploit a Remote Code Execution (RCE) vulnerability in ThinkPHP, a free open-source PHP framework.
The critical zero-day "Scripting Engine Memory Corruption" vulnerability (CVE-2018-8653) is being actively exploited on Windows systems by hackers.
Cisco has patched a vulnerability in the authorization subsystem of Cisco's Adaptive Security Appliance (ASA) Software. An authenticated, unprivileged remote attacker could exploit the vulnerability to perform privileged actions by using the ASA web management interface.
WordPress released version 5.0.1 that fixes seven vulnerabilities.
The Mozilla Foundation issued a security advisory (2018-29) that addresses vulnerabilities in Firefox 64.
Adobe published security updates to address vulnerabilities in Adobe Acrobat and Reader.
Microsoft issued the December 2018 Security Updates that include 39 unique vulnerability fixes, 9 of them rated critical.
Apple released security updates that address vulnerabilities in multiple products, to include iOS, macOS, Safari, iCloud, iTunes and tvOS.
Google has released Chrome 71 (version 71.0.3578.80) for Windows, Mac and Linux. The latest update includes 43 security fixes, 13 of them rated High severity and discovered by external researchers.