Mozilla Firefox – Memory Safety Bugs
Description: Multiple memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2.
Threat: An attacker who exploited the vulnerability could potentially be able to execute arbitrary code in the browser of victims.
Criticality: High
Update/Patch: https://www.mozilla.org/en-US/security/advisories/mfsa2019-34/
Google Chrome – Arbitrary Code Execution Vulnerability
Description: The Chrome team is delighted to announce the promotion of Chrome 78 to the stable channel for Windows, Mac and Linux. This update includes 37 security fixes.
Threat: An attacker who exploited the vulnerability could execute arbitrary code in the context of the browser and perform unauthorised actions.
Criticality: High
Update/Patch: https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_22.html
Cisco Aironet Access Points – Unauthorized Access Vulnerability
Description: Cisco has issued patches for multiple vulnerabilities which impact Aironet access points. An attacker could request specific URLs from an affected AP to explore this vulnerability.
Threat: An attacker who exploited the vulnerability could gain access to the device with elevated privileges, view sensitive information and change some option.
Criticality: High
Update/Patch: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-airo-unauth-access
0 Comments