A vulnerability in Facebook’s WhatsApp could allow attackers to install spyware on impacted smartphones.
Apple released security updates that address vulnerabilities in multiple products, to include iOS, macOS, Safari, watchOS, tvOS and Apple TV Software. Additional mitigations for speculative execution vulnerabilities in Intel CPUs or “Spectre” were also included in the latest macOS update.
Cisco has patched a critical vulnerability in the REST API of Cisco’s Elastic Services Controller that could lead to an attacker bypassing authentication on the REST API.
Multiple vulnerabilities have been discovered in Jenkins plugins that could lead to information disclosure. The three affected plugins are Swarm, Ansible and GitLab.
Cisco released security updates to patch a critical “SSH Key” vulnerability in Cisco Nexus 9000 series software as well as 22 High and 18 Medium severity bugs in multiple products, such as Cisco’s Web Security Appliance, Umbrella, Adaptive Security Appliance, Firepower, Small Business routers and others.