Monthly Archives: April 2020

Bulletins

Vulnerability Summary for the Week of April 13, 2020

Original release date: April 20, 2020The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet…

Comments Off on Vulnerability Summary for the Week of April 13, 2020
April 20, 2020
Current Activity

Apple Releases Security Update for Xcode

Apple has released a security update to address vulnerabilities in Xcode. A remote attacker could exploit this vulnerability to take control of an affected system. The Cybersecurity and Infrastructure Security…

Comments Off on Apple Releases Security Update for Xcode
April 17, 2020
Alerts

AA20-107A: Continued Threat Actor Exploitation Post Pulse Secure VPN Patching

Note: This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques and mitigations. This…

Comments Off on AA20-107A: Continued Threat Actor Exploitation Post Pulse Secure VPN Patching
April 16, 2020
Current Activity

Oracle Releases April 2020 Security Bulletin

Oracle has released its Critical Patch Update for April 2020 to address 397 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of…

Comments Off on Oracle Releases April 2020 Security Bulletin
April 15, 2020
Alerts

AA20-106A: Guidance on the North Korean Cyber Threat

The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat…

Comments Off on AA20-106A: Guidance on the North Korean Cyber Threat
April 15, 2020
Current Activity

VMware Releases Security Updates for vRealize Log Insight

VMware has released security updates to address vulnerabilities in VMware vRealize Log Insight. An attacker could exploit these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure…

Comments Off on VMware Releases Security Updates for vRealize Log Insight
April 14, 2020
Current Activity

Microsoft Releases April 2020 Security Updates

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and…

Comments Off on Microsoft Releases April 2020 Security Updates
April 14, 2020
Bulletins

Vulnerability Summary for the Week of April 6, 2020

Original release date: April 13, 2020The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet…

Comments Off on Vulnerability Summary for the Week of April 6, 2020
April 13, 2020
Current Activity

Mozilla Releases Security Updates for Firefox, Firefox ESR

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity…

Comments Off on Mozilla Releases Security Updates for Firefox, Firefox ESR
April 8, 2020