Security Updates & Patches - Page 3 of 76

Apache patches Struts 2 RCE vulnerability (CVE-2021-31805)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 13, 2022 April 13, 2022

The Apache Software Foundation has patched a Struts 2 vulnerability CVE-2021-31805 that may lead to remote code execution.

Adobe has released security updates for Adobe Acrobat and Reader, Photoshop, Commerce and After Effects

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 12, 2022 April 12, 2022

Adobe has released security updates for Adobe Acrobat and Reader, Photoshop, Commerce and After Effects.

Microsoft April 2022 Security Updates addresses 117 vulnerabilities (to include 2 zero-days)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / April 12, 2022 April 12, 2022

The Microsoft April 2022 Security Updates includes patches and advisories for 117 vulnerabilities, ten of those rated Critical and two zero-day flaws.

Google releases Chrome 100 security update (100.0.4896.88) with fixes for 11 vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 12, 2022 April 12, 2022

Google has released Chrome 100.0.4896.88 for Windows, Mac and Linux with fixes for 11 vulnerabilities, 8 rated High severity.

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Sudo, SMBv1 vulnerabilities)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 7, 2022 April 7, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has added 3 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Sudo, SMBv1 and Microsoft HTTP Protocol Stack vulnerabilities.

Mozilla releases Firefox 99 with fixes for 3 High severity vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 7, 2022 April 7, 2022

The Mozilla Foundation has patched three High risk vulnerabilities in Firefox 99, as well as a number of other bug fixes.

Google releases Chrome 100 security update (100.0.4896.75) with fix for 1 High risk vulnerability

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 7, 2022 April 7, 2022

Google has released Chrome 100.0.4896.75 for Windows, Mac and Linux with fixes for just one High risk vulnerability. In addition, Google also issued security updates for Chrome for iOS, Chrome for Android and LTS-96.

GitLab issues security update for Critical hard-coded password vulnerability (CVE-2022-1162)

Application Security, Password Management, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 2, 2022 April 2, 2022

GitLab has issued a security update to address a Critical vulnerability CVE-2022-1162 where static passwords were inadvertently set during OmniAuth-based registration.

CISA adds 7 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Trend Micro, Sophos, Dell, QNAP)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 2, 2022 April 2, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has added 7 vulnerabilities to its Known Exploited Vulnerabilities Catalog. Recent additions include vulnerabilities affecting Trend Micro, Sophos, Windows, QNAP, Dell, and Dasan products.

Spring fixes Critical Spring Framework “Spring4Shell” and Spring Cloud Function vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 1, 2022 April 1, 2022

Spring has published new security fixes for Spring Framework “Spring4Shell” and Spring Cloud Function vulnerabilities.