SaltStack, multiple vendors fix Critical vulnerabilities in Salt

In case you missed it last week, SaltStack released security updates to fix two critical Salt vulnerabilities. Multiple vendors that integrate Salt into their products have also released patches or workarounds to address the flaws.

Continue Reading SaltStack, multiple vendors fix Critical vulnerabilities in Salt

Cisco releases 12 High severity advisories for multiple products

Cisco has released 12 High severity security advisories for Cisco Adaptive Security Appliance (ASA) Software and Firepower products. In addition, a security fix was also released to address a Snort HTTP detection engine file policy bypass Vulnerability.

Continue Reading Cisco releases 12 High severity advisories for multiple products

Alert: Weblogic vulnerability exploited in the wild (apply April CPUs without delay)

Oracle released a new warning that a previously patched Weblogic vulnerability CVE-2020-2883 is being exploited in the wild. The company further urged organizations should apply April CPUs without delay.

Continue Reading Alert: Weblogic vulnerability exploited in the wild (apply April CPUs without delay)