Cisco has patched three new High risk IOS, IOS XE and IOS XR software vulnerabilities in multiple network products.
Google has released Chrome 86.0.4240.198 security update for Windows, Mac and Linux. The update also addresses two High risk zero-day vulnerabilities (CVE-2020-16013, CVE-2020-16017) that are being exploited in the wild.
The Mozilla Foundation has released Firefox 82.0.3 that includes a security fix for a Critical vulnerability CVE-2020-26950.
Adobe has released security updates to address vulnerabilities in Adobe Reader Mobile for Android and Adobe Connect.
Microsoft has released the November 2020 Security updates that includes patches for 112 vulnerabilities, 17 of them rated Critical. In addition, the tech giant fixed a zero-day Windows kernel vulnerability CVE-2020-17087 with known public exploits.
Apple has released security updates to fix vulnerabilities in macOS Catalina 10.15.7, iOS 14.2 and other products. Multiple vulnerabilities have been reported exploited in the wild.
Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader. Successful exploitation of many of these vulnerabilities could lead to arbitrary code execution, information disclosure or privilege escalation.
Google has released Chrome 86.0.4240.183 security update for Windows, Mac and Linux. The update also addresses a High severity zero-day vulnerability that is being exploited in the wild.
Oracle has released an emergency patch for a Weblogic remote code execution (RCE) vulnerability CVE-2020-14750.
U.S. government cybersecurity experts warned that "sophisticated threat actors" have been using new Russian malware variants, ComRAT and Zebrocy, in recent cyberattacks.