VMware issued a security advisory for multiple vulnerabilities that impact VMware ESXi and vCenter Server products. The vulnerability severity ranges from a CVSS base score of 4.2 to 7.7.
LastPass released a new security update that fixes a vulnerability that exposes credentials from a previously visited website. The new version 4.33.0 was released on September 12.
Google has released Chrome 77 (version 77.0.3865.75) for Windows, Mac and Linux. The update includes a number of fixes and improvements in the popular browser. The company also added a Chrome browser update for Android.
Microsoft issued the September 2019 Security Updates that include 79 unique vulnerability fixes, 17 of those rated critical. In addition, two of the patches address two 0-day Privileged Escalation vulnerabilities CVE-2019-1214 and CVE-2019-1215.
Researchers have discovered two denial of service (DoS) vulnerabilities in NETGEAR N300 home wireless routers. NETGEAR has issued firmware updates to address the issues.
WordPress 5.2.3 Security and Maintenance Release is now out. The update includes 29 feature enhancements and fixes, as well as security fixes.
Cisco has released security updates to patch high risk vulnerabilities in multiple products to include Cisco Webex Teams and Industrial Network Director (IND).
Mozilla has just released Firefox 69, with multiple feature enhancements and stronger privacy protections. The update also includes security fixes for 20 vulnerabilities, one of them critical.
A group of hackers have been using compromised websites to launch watering hole attacks against iPhone users who visit the websites. The attacks also use five different exploit chains and exploit 0-day vulnerabilities that don't require any user interaction.
Apple released security updates and emergency patch for iOS and macOS (CVE-2019-8605). In all, the company released iOS 12.4.1, macOS Mohave 10.14.6, watchOS 5.3.1 and tvOS 12.4.1.