Google releases Chrome 93 security update (93.0.4577.82) with fixes for 2 zero-days under attack
Google has released Chrome 93 security update (93.0.4577.82) with fixes for 2 zero-day vulnerabilities (CVE-2021-30632 and CVE-2021-30633) under attack.
Microsoft September 2021 Security Updates includes fix for an RCE bug in MSHTML under active attack
Microsoft has released the September 2021 Security updates that includes patches for 66 vulnerabilities, 3 of those rated Critical. The updates also include a fix for one zero-day bug in MSHTML (CVE-2021-40444) exploited in the wild.
Microsoft warns of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444) — Updated
Microsoft has warned of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444). The tech giant also released workarounds for the threat until a permanent fix is released.
Apple security updates for iOS 14.8, macOS Big Sur 11.6 and other products (warns of active exploits in the wild)
Apple has released security updates to fix vulnerabilities in iOS 14.8, macOS Big Sur 11.6, Safari 14.1.2, watchOS 7.6.2, and other products. The tech giant also warned of active exploits in the wild against some vulnerabilities.
Microsoft August 2021 Security Updates includes fixes for 7 Critical RCEs, 3 zero-day vulnerabilities
Microsoft has released the August 2021 Security updates that includes patches for 49 vulnerabilities, 7 of those rated Critical. The updates also include fixes for 3 zero-day bugs exploited in the wild.
Apple fixes watchOS vulnerability (CVE-2021-30807) exploited in the wild
Apple has fixed a zero-day vulnerability CVE-2021-30807 in Apple watchOS 7.6.1 that is under active attack.
Apple fixes zero-day vulnerability (CVE-2021-30807) in macOS Big Sur and iOS
Apple has fixed a zero-day vulnerability CVE-2021-30807 in macOS Big Sur and iOS versions that is under active attack.
Microsoft issues workaround for zero-day ‘SeriousSAM’ vulnerability
Microsoft has issued a workaround for a serious zero-day vulnerability CVE-2021–36934 dubbed "SeriousSAM" that could allow an attacker to read any registry hives as a non-administrator.
Microsoft July 2021 Security Updates includes fixes for 13 Critical RCEs, 3 zero-day vulnerabilities
Microsoft has released the July 2021 Security updates that includes patches for 117 vulnerabilities, 13 of those rated Critical. The updates also include fixes for 3 zero-day bugs exploited in the wild.
Critical ForgeRock Access Management vulnerability (CVE-2021-35464) exploited
A Critical ForgeRock Access Management (AM) vulnerability (CVE-2021-35464) has been exploited in the wild. The issue affects ForgeRock's OpenAM, open-source AM solution.