Apply Microsoft April 2021 Security Update to Mitigate Newly Disclosed Microsoft Exchange Vulnerabilities

Original release date: April 13, 2021Microsoft's April 2021 Security Update mitigates significant vulnerabilities affecting on-premises Exchange Server 2016 and 2019. An attacker could exploit these vulnerabilities to gain access and maintain…

Comments Off on Apply Microsoft April 2021 Security Update to Mitigate Newly Disclosed Microsoft Exchange Vulnerabilities

Vulnerability Summary for the Week of April 5, 2021

Original release date: April 12, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info apple -- ipad_os An out-of-bounds read was addressed with improved…

Comments Off on Vulnerability Summary for the Week of April 5, 2021

Malicious Cyber Activity Targeting Critical SAP Applications

Original release date: April 6, 2021SAP systems running outdated or misconfigured software are exposed to increased risks of malicious attacks. SAP applications help organizations manage critical business processes—such as enterprise…

Comments Off on Malicious Cyber Activity Targeting Critical SAP Applications

Vulnerability Summary for the Week of March 29, 2021

Original release date: April 5, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info arubanetworks -- instant A remote buffer overflow vulnerability was discovered…

Comments Off on Vulnerability Summary for the Week of March 29, 2021

CISA Releases Supplemental Direction on Emergency Directive for Microsoft Exchange Server Vulnerabilities

Original release date: March 31, 2021CISA has issued supplemental direction to Emergency Directive (ED) 21-02: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities providing additional forensic triage and server hardening, requirements for…

Comments Off on CISA Releases Supplemental Direction on Emergency Directive for Microsoft Exchange Server Vulnerabilities

Vulnerability Summary for the Week of March 22, 2021

Original release date: March 29, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info apache -- ofbiz Apache OFBiz has unsafe deserialization prior to…

Comments Off on Vulnerability Summary for the Week of March 22, 2021