Advisory Week


Week 39, 2022
National Cyber Awareness System
 
Drupal Releases Security Update
Microsoft Releases Guidance on Zero-Day Vulnerabilities in Microsoft Exchange Server
Cisco Releases Security Updates for Multiple Products
Mozilla Releases Security Update for Thunderbird
Hurricane-Related Scams 
CISA Adds Three Known Exploited Vulnerabilities to Catalog
VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere
CISA Releases Six Industrial Control Systems Advisories
CISA Publishes User Guide to Prepare for Nov. 1 Move to TLP 2.0
CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
CISA Releases Three Industrial Control Systems Advisories
Mozilla Security Advisories
 
Security Vulnerabilities fixed in Thunderbird 102.3.1 mfsa2022-43
Ubuntu Security Notices
 
USN-5649-1: Firefox vulnerabilities
USN-5650-1: Linux kernel vulnerabilities
USN-5648-1: Linux kernel (GKE) vulnerabilities
USN-5647-1: Linux kernel (GCP) vulnerabilities
USN-5646-1: libXi vulnerabilities
USN-5615-2: SQLite vulnerability
USN-5645-1: PostgreSQL vulnerabilities
USN-5644-1: Linux kernel (GCP) vulnerabilities
USN-5643-1: Ghostscript vulnerabilities
USN-5642-1: WebKitGTK vulnerabilities
USN-5641-1: Squid vulnerabilities
USN-5640-1: Linux kernel (Oracle) vulnerabilities
USN-5639-1: Linux kernel (Azure CVM) vulnerabilities
USN-5638-1: Expat vulnerability
USN-5637-1: libvpx vulnerability
USN-5636-1: SoS vulnerability
Red Hat Security Advisory
 
(RHSA-2022:6756) Moderate: java-1.8.0-ibm security update
(RHSA-2022:6755) Moderate: java-1.7.1-ibm security update
(RHSA-2022:6753) Moderate: httpd24-httpd security and bug fix update
(RHSA-2022:6750) Important: Red Hat OpenStack Platform (openstack-barbican) security update
(RHSA-2022:6741) Important: kernel security and bug fix update
(RHSA-2022:6717) Important: thunderbird security update
(RHSA-2022:6716) Important: thunderbird security update
(RHSA-2022:6715) Important: thunderbird security update
(RHSA-2022:6714) Moderate: RHACS 3.72 enhancement and security update
(RHSA-2022:6713) Important: thunderbird security update
(RHSA-2022:6711) Important: firefox security update
(RHSA-2022:6710) Important: thunderbird security update
(RHSA-2022:6708) Important: thunderbird security update
(RHSA-2022:6707) Important: firefox security update
(RHSA-2022:6703) Important: firefox security update
(RHSA-2022:6702) Important: firefox security update
(RHSA-2022:6701) Important: firefox security update
(RHSA-2022:6700) Important: firefox security update
(RHSA-2022:6696) Critical: Red Hat Advanced Cluster Management 2.4.6 security update and bug fixes
(RHSA-2022:6560) Moderate: Openshift Logging Bug Fix Release and Security Update (5.3.12)
Cisco Security Advisory
 
Cisco SD-WAN Software Arbitrary File Corruption Vulnerability
Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100 Series Access Points UDP Processing Denial of Service Vulnerability
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family DHCP Processing Denial of Service Vulnerability
Cisco IOS and IOS XE Software SSH Denial of Service Vulnerability
Cisco Wireless LAN Controller AireOS Software FIPS Mode Denial of Service Vulnerability
Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability
Cisco Catalyst 9100 Series Access Points Association Request Denial of Service Vulnerability
Cisco SD-WAN Arbitrary File Deletion Vulnerability
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Mobility Denial of Service Vulnerability
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Information Disclosure Vulnerability
Cisco Duo for macOS Authentication Bypass Vulnerability
Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points Privilege Escalation Vulnerability
Cisco IOS XE Software for Catalyst 9200 Series Switches Arbitrary Code Execution Vulnerability
Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability
Cisco IOS and IOS XE Software Common Industrial Protocol Request Denial of Service Vulnerability
Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability
Cisco IOS XE Software for Catalyst Switches MPLS Denial of Service Vulnerability
Cisco SD-WAN Software Privilege Escalation Vulnerabilities
Cisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password Vulnerability
Cisco Software-Defined Application Visibility and Control on Cisco vManage Authentication Bypass Vulnerability
Cisco IOS XE Software Web UI Command Injection Vulnerability
Vulnerabilities in Layer 2 Network Security Controls Affecting Cisco Products: September 2022
Cisco Access Points VLAN Bypass from Native VLAN Vulnerability
Microsoft Security
 
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server Remote Code Execution Vulnerability
Google Security Advisories
 
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Github Security Advisories
 
[GHSA-9rpw-2h95-666c] Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package
[GHSA-2jjq-x548-rhpv] isolated-vm has vulnerable CachedDataOptions in API
[GHSA-w4pr-4vjg-hffh] When matrix-nio receives forwarded room keys, the receiver doesn't check if it requested the key from the forwarder
[GHSA-vp68-2wrm-69qm] matrix-sdk-crypto contains potential impersonation via room key forward responses
[GHSA-5w8r-8pgj-5jmf] matrix-js-sdk subject to user impersonation due to key/device identifier confusion in SAS verification
[GHSA-4rxr-27mm-mxq9] Upstash Adapter missing token verification
[GHSA-52m2-vc4m-jj33] Twig may load a template outside a configured directory when using the filesystem loader
[GHSA-gfhp-jgp6-838j] Orckestra C1 CMS's deserialization of untrusted data allows for arbitrary code execution.
[GHSA-f36p-42jv-8rh2] Lithium vulnerable to Cross Site Scripting in provided Swagger-UI
[GHSA-fpgf-pjjv-2qgm] matrix-android-sdk2 vulnerable to Olm/Megolm protocol confusion
[GHSA-2pvj-p485-cp3m] matrix-android-sdk2 vulnerable to impersonation via forwarded Megolm sessions
[GHSA-cxgf-v2p8-7ph7] NuProcess vulnerable to command-line injection through insertion of NUL character(s)
[GHSA-r48r-j8fx-mq2c] matrix-js-sdk subject to user spoofing via Olm/Megolm protocol confusion
[GHSA-6263-x97c-c4gg] matrix-js-sdk subject to impersonated messages due to permissive key forwarding
[GHSA-hvv8-5v86-r45x] Improper beacon events in matrix-js-sdk can result in availability issues
[GHSA-mrgp-mrhc-5jrq] vm2 vulnerable to Sandbox Escape resulting in Remote Code Execution on host
[GHSA-p6fh-xc6r-g5hw] Brokercap Bifrost subject to authentication bypass when using HTTP basic authentication
[GHSA-8fg9-p83m-x5pq] ReDoS issue in dparse
CISA Known Exploted Vulnerabilities
 
Microsoft Exchange Server Remote Code Execution Vulnerability CVE-2022-41082
Microsoft Exchange Server Server-Side Request Forgery Vulnerability CVE-2022-41040
Atlassian Bitbucket Server and Data Center Command Injection Vulnerability CVE-2022-36804

The known exploited vulnerabilities list contains vulnerabilities that are known to be activly exploited. They may not be new or recently discovered. Vulnerabilities listed here were added to this list in the past week.