The critical zero-day “Scripting Engine Memory Corruption” vulnerability (CVE-2018-8653) is being actively exploited on Windows systems by hackers.
Cisco has patched a vulnerability in the authorization subsystem of Cisco’s Adaptive Security Appliance (ASA)Software that could allow an authenticated, unprivileged remote attacker perform privileged actions by using the ASA web management interface.
WordPress released version 5.0.1 that fixes seven vulnerabilities.
The Mozilla Foundation issued a security advisory (2018-29) that addresses vulnerabilities in Firefox 64.
Adobe published security updates to address vulnerabilities in Adobe Acrobat and Reader.