Microsoft has published new guidance on Open Management Infrastructure (OMI) vulnerabilities within Azure virtual management (VM) Management extensions.
Drupal has patched five Moderately Critical cross site request forgery and access bypass vulnerabilities that affect multiple versions of Drupal Core.
Google has released Chrome 93 security update (93.0.4577.82) with fixes for 2 zero-day vulnerabilities (CVE-2021-30632 and CVE-2021-30633) under attack.
Microsoft has released the September 2021 Security updates that includes patches for 66 vulnerabilities, 3 of those rated Critical. The updates also include a fix for one zero-day bug in MSHTML (CVE-2021-40444) exploited in the wild.
The Adobe September 2021 updates include fixes for Adobe Acrobat and Reader and 14 other products.
Microsoft has warned of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444). The tech giant also released workarounds for the threat until a permanent fix is released.
Apple has released security updates to fix vulnerabilities in iOS 14.8, macOS Big Sur 11.6, Safari 14.1.2, watchOS 7.6.2, and other products. The tech giant also warned of active exploits in the wild against some vulnerabilities.
Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.
WordPress has released WordPress 5.8.1 security and maintenance update that includes fixes for 3 security vulnerabilities and 60 bugs. All WordPress versions between 5.4 and 5. 8 are affected.
Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may collectively allow an attacker to launch privileged code in a guest VM to compromise or crash the host.