The Cybersecurity and Infrastructure Security Agency (CISA) has added 16 vulnerabilities to its Known Exploited Vulnerabilities Catalog. The issues include recently patched Apple WebKit zero-day, SeriousSAM, SMBv3, and Jenkins vulnerabilities among others.
Security Updates & Patches
Apple has released security updates for iOS 15.3.1, macOS Monterey 12.2.1, and Safari 15.3 with fixes for a zero-day vulnerability CVE-2022-22620 exploited in the wild.
Software giant SAP has released February 2022 Security Patch Day that includes 19 separate security advisories and patches, to include fixes for critical log4j and ICMAD vulnerabilities.
Google has released a new Android Security Bulletin that contains patches and details of security vulnerabilities affecting Android devices. One of the fixed issues is a Critical ‘remote escalation of privilege’ vulnerability CVE-2021-39675.
The Mozilla Foundation has patched four High risk vulnerabilities in Firefox 97, as well as a number of other bug fixes.
Adobe has released security updates for Adobe Photoshop, Illustrator and other products.
A security researcher has discovered multiple vulnerabilities in Airspan Networks Mimosa products that could result in remote code execution, denial-of-service condition, or leak sensitive information.
Google has released Long-term Support (LTS) candidate update for ChromeOS 96 with fixes for multiple vulnerabilities.
Cisco has released a Critical security update for multiple vulnerabilities in Small Business RV Routers. Several of those vulnerabilities are rated Critical severity and have the highest rated CVSS score of 10.0.