Vulnerability Summary for the Week of April 6, 2020

Original release date: April 13, 2020The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet…

Comments Off on Vulnerability Summary for the Week of April 6, 2020

Mozilla Releases Security Updates for Firefox, Firefox ESR

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity…

Comments Off on Mozilla Releases Security Updates for Firefox, Firefox ESR

Google Releases Security Updates

Google has released Chrome version 81.0.4044.92 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. The Cybersecurity and…

Comments Off on Google Releases Security Updates

AA20-099A: COVID-19 Exploited by Malicious Cyber Actors

This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). This…

Comments Off on AA20-099A: COVID-19 Exploited by Malicious Cyber Actors

Vulnerability Summary for the Week of March 30, 2020

Original release date: April 6, 2020The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet…

Comments Off on Vulnerability Summary for the Week of March 30, 2020

MS-ISAC Releases Advisory on DrayTek Devices

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory regarding two vulnerable command injection points in DrayTek devices (CVE-2020-8515). An attacker could exploit these vulnerabilities to take…

Comments Off on MS-ISAC Releases Advisory on DrayTek Devices