Oracle Releases April 2021 Critical Patch Update

Original release date: April 20, 2021Oracle has released its Critical Patch Update for April 2021 to address 384 vulnerabilities across multiple products. A remote attacker could exploit some of these…

Comments Off on Oracle Releases April 2021 Critical Patch Update

AA21-110A: Exploitation of Pulse Connect Secure Vulnerabilities

Original release date: April 20, 2021SummaryThe Cybersecurity and Infrastructure Security Agency (CISA) is aware of compromises affecting U.S. government agencies, critical infrastructure entities, and other private sector organizations by a…

Comments Off on AA21-110A: Exploitation of Pulse Connect Secure Vulnerabilities

Vulnerability Summary for the Week of April 12, 2021

Original release date: April 19, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info dreamreport -- dream_report A privilege escalation vulnerability exists in Dream…

Comments Off on Vulnerability Summary for the Week of April 12, 2021

CISA and CNMF Analysis of SolarWinds-related Malware

Original release date: April 15, 2021CISA and the Department of Defense (DoD) Cyber National Mission Force (CNMF) have analyzed additional SolarWinds-related malware variants—referred to as SUNSHUTTLE and SOLARFLARE. One of…

Comments Off on CISA and CNMF Analysis of SolarWinds-related Malware

Threat Actors Targeting Cybersecurity Researchers

Original release date: April 14, 2021Google and Microsoft recently published reports on advanced persistent threat (APT) actors targeting cybersecurity researchers. The APT actors are using fake social media profiles and…

Comments Off on Threat Actors Targeting Cybersecurity Researchers

SAP Releases April 2021 Security Updates

Original release date: April 13, 2021SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected…

Comments Off on SAP Releases April 2021 Security Updates

Apply Microsoft April 2021 Security Update to Mitigate Newly Disclosed Microsoft Exchange Vulnerabilities

Original release date: April 13, 2021Microsoft's April 2021 Security Update mitigates significant vulnerabilities affecting on-premises Exchange Server 2016 and 2019. An attacker could exploit these vulnerabilities to gain access and maintain…

Comments Off on Apply Microsoft April 2021 Security Update to Mitigate Newly Disclosed Microsoft Exchange Vulnerabilities

Vulnerability Summary for the Week of April 5, 2021

Original release date: April 12, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info apple -- ipad_os An out-of-bounds read was addressed with improved…

Comments Off on Vulnerability Summary for the Week of April 5, 2021