VMware has released a patch for a high severity SQL-injection vulnerability CVE-2020-3973 in VMware SD-WAN by VeloCloud (VeloCloud).
F5 has patched a Critical remote code execution (RCE) vulnerability (CVE-2020-5902) in the Configuration utility of BIG-IP. Researchers further discovered 8,000 devices were vulnerable on the internet and could result in full system compromise.
Cisco has patched a High severity Cisco small business switch vulnerability (CVE-2020-3297) and 7 other Medium rated issues that affect multiple Cisco products.
Samba has released software updates to fix four security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
The Mozilla Foundation has released Firefox 78 that includes security fixes for multiple vulnerabilities, as well as a new 'Protections Dashboard' feature.
Microsoft has released two emergency out-of-band Windows Codecs Library patches for multiple Windows 10 and Windows Server versions. The release comes nearly two weeks before the next 'Patch Tuesday' updates scheduled for July 14.
Palo Alto Networks has issued a Critical security advisory for PAN-OS authentication bypass in SAML authentication vulnerability CVE-2020-2021.
Netgear has released firmware updates to fix a high severity remote code execution (RCE) vulnerability in multiple Netgear routers and other network devices. A remote attacker could exploit to take control of an affected device.
The Apache Software Foundation has patched a Tomcat HTTP/2 DoS vulnerability (CVE-2020-11996). A cyber attacker could exploit this vulnerability to cause a denial-of-service (DoS) condition.
Cisco has released a High severity security advisory for a telnet vulnerability that affects Cisco IOS XE software.