Google releases Chrome 102 security updates with fixes for 32 vulnerabilities (1 Critical)
Google has released Chrome for Windows (102.0.5005.61/62/63) and Chrome 102.0.5005.61 for Mac and Linux, with fixes for 32 vulnerabilities.
Vulnerabilities & Exploits
Mozilla fixes 2 Critical vulnerabilities in Firefox 100.0.2
The Mozilla Foundation has patched two Critical risk vulnerabilities in Firefox 100.0.2. An attacker could exploit these vulnerabilities to take control of impacted systems.
Apache patches High risk Tomcat vulnerability (CVE-2022-25762)
The Apache Software Foundation has patched a High risk Apache Tomcat ‘Request Mix-up’ vulnerability CVE-2022-25762.
ISC fixes High risk BIND vulnerability (CVE-2022-1183)
The Internet Systems Consortium (ISC) has released a security update that fixes a High risk vulnerability CVE-2022-1183 in multiple versions of ISC Berkeley Internet Name Domain (BIND).
Apple patches vulnerabilities in multiple products (CVE-2022-22675 exploited in the wild)
Apple has released security updates for Apple iOS 15.5, macOS Monterey 12.4, macOS Big Sur 11.6.6, and other products. Apple is aware of known exploits in the wild for a zero-day vulnerability CVE-2022-22675 that affects macOS Big Sur, watchOS, and tvOS.
Adobe has released security updates for multiple Adobe products
Adobe has released security updates for Adobe Character Animator, ColdFusion, InDesign, Framemaker, and InCopy.
Attackers could exploit Critical F5 BIG-IP vulnerability to execute arbitrary commands
Unauthenticated attackers could exploit a Critical BIG-IP iControl REST vulnerability CVE-2022-1388 to execute arbitrary system commands, create or delete files, or disable services on BIG-IP systems.
Google releases Chrome 101 (101.0.4951.64) security update with fixes for 13 vulnerabilities
Google has released Chrome 101.0.4951.64 for Windows, Mac and Linux with fixes for 13 vulnerabilities, to include 8 rated High severity.
Microsoft May 2022 Security Updates addresses 73 vulnerabilities (7 rated Critical, 1 zero-day)
The Microsoft May 2022 Security Updates includes patches and advisories for 73 vulnerabilities, seven of those rated Critical severity and one zero-day flaw CVE-2022-26925.
CISA adds 5 vulnerabilities to Known Exploited Vulnerabilities Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has added five vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include two Apple, two Microsoft and one OpenSSL vulnerability.