US-CERT

Subscribe to US-CERT feed
A regularly updated summary of the most frequent, high-impact security incidents currently being reported to the US-CERT.
Updated: 2 hours 42 min ago

McAfee Releases Security Bulletin for Web Gateway

Thu, 2017-07-27 10:08
Original release date: July 27, 2017

McAfee has released a security bulletin to address multiple vulnerabilities in Web Gateway. Some of these vulnerabilities could allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review McAfee Security Bulletin SB10205 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Updates

Thu, 2017-07-27 10:01
Original release date: July 27, 2017

Cisco has released updates to address several vulnerabilities affecting multiple products. Exploitation of one of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition.

US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:

  • Cisco IOS and IOS XE Software Autonomic Networking Infrastructure Denial of Service Vulnerability cisco-sa-20170726-anidos
  • Cisco IOS and IOS XE Software Autonomic Control Plane Channel Information Disclosure Vulnerability cisco-sa-20170726-aniacp

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Updates

Thu, 2017-07-27 10:01
Original release date: July 27, 2017

Cisco has released updates to address several vulnerabilities affecting multiple products. Exploitation of one of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition.

US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:

  • Cisco IOS and IOS XE Software Autonomic Networking Infrastructure Denial of Service Vulnerability cisco-sa-20170726-anidos
  • Cisco IOS and IOS XE Software Autonomic Control Plane Channel Information Disclosure Vulnerability cisco-sa-20170726-aniacp

This product is provided subject to this Notification and this Privacy & Use policy.


Google Releases Security Updates for Chrome

Wed, 2017-07-26 13:43
Original release date: July 26, 2017 | Last revised: July 27, 2017

Google has released Chrome version 60.0.3112.78 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that, if exploited, may allow an attacker to take control of an affected system.

Users and administrators are encouraged to review the Chrome Releases page and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Google Releases Security Updates for Chrome

Wed, 2017-07-26 13:43
Original release date: July 26, 2017

Google has released Chrome version 60.0.3112.78 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that, if exploited, may allow an attacker to take control of an affected system.

Users and administrators are encouraged to review the Chrome Releases page and apply the necessary updates.

 

 

This product is provided subject to this Notification and this Privacy & Use policy.


Joomla! Releases Security Update

Tue, 2017-07-25 17:55
Original release date: July 25, 2017

Joomla! has released version 3.7.4 of its Content Management System (CMS) software to address several vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.

US-CERT encourages users and administrators to review the Joomla! Security Release and US-CERT's Alert on Content Management Systems Security and Associated Risks and apply the necessary update.

This product is provided subject to this Notification and this Privacy & Use policy.


Joomla! Releases Security Update

Tue, 2017-07-25 17:55
Original release date: July 25, 2017

Joomla! has released version 3.7.4 of its Content Management System (CMS) software to address several vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.

US-CERT encourages users and administrators to review the Joomla! Security Release and US-CERT's Alert on Content Management Systems Security and Associated Risks and apply the necessary update.

This product is provided subject to this Notification and this Privacy & Use policy.


IBM Cisco Security Update

Fri, 2017-07-21 09:02
Original release date: July 21, 2017

IBM has released a security update to address some vulnerabilities in its IBM Cisco MDS Series Switches Data Center Network Manager (DCNM) software. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review the IBM Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


IBM Cisco Security Update

Fri, 2017-07-21 09:02
Original release date: July 21, 2017

IBM has released a security update to address some vulnerabilities in its IBM Cisco MDS Series Switches Data Center Network Manager (DCNM) software. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review the IBM Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Update

Thu, 2017-07-20 11:24
Original release date: July 20, 2017

Cisco has released a security update to address a vulnerability in its Web Security Appliance (WSA). A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Update

Thu, 2017-07-20 11:24
Original release date: July 20, 2017

Cisco has released a security update to address a vulnerability in its Web Security Appliance (WSA). A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Update

Thu, 2017-07-20 11:24
Original release date: July 20, 2017

Cisco has released a security update to address a vulnerability in its Web Security Appliance (WSA). A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Apple Releases Security Updates

Wed, 2017-07-19 14:12
Original release date: July 19, 2017

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:

This product is provided subject to this Notification and this Privacy & Use policy.


Apple Releases Security Updates

Wed, 2017-07-19 14:12
Original release date: July 19, 2017

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:

This product is provided subject to this Notification and this Privacy & Use policy.


Apple Releases Security Updates

Wed, 2017-07-19 14:12
Original release date: July 19, 2017

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:

This product is provided subject to this Notification and this Privacy & Use policy.


Oracle Releases Security Bulletin

Tue, 2017-07-18 15:03
Original release date: July 18, 2017

Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Oracle Releases Security Bulletin

Tue, 2017-07-18 15:03
Original release date: July 18, 2017

Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Oracle Releases Security Bulletin

Tue, 2017-07-18 15:03
Original release date: July 18, 2017

Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Updates

Mon, 2017-07-17 16:26
Original release date: July 17, 2017

Cisco has released security updates to address a vulnerability in its WebEx browser extension on Google Chrome and Mozilla Firefox. A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Updates

Mon, 2017-07-17 16:26
Original release date: July 17, 2017

Cisco has released security updates to address a vulnerability in its WebEx browser extension on Google Chrome and Mozilla Firefox. A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Pages