Oracle – Quarterly Critical Patch Update
Description: Oracle’s Critical Patch Update released in January 2020 contains 334 new security patches across most of its product families.
Threat: Affected products include Oracle Database Server, Oracle communication applications, MySQL and more. Customers are strongly recommended to apply the patches as soon as possible.
Criticality: High
Update/Patch: https://www.oracle.com/security-alerts/cpujan2020.html
Microsoft Internet Explorer – Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer 9, 10 and 11.
Threat: An attacker could execute arbitrary code in the context of the current user to gain the same user rights as the current user.
Criticality: High
Update/Patch: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV200001
Citrix Application Delivery Controller – Arbitrary Code Execution Vulnerability
Description: Citrix has identified a vulnerability in Citrix Application Delivery Controller (ADC) and Citrix Gateway.
Threat: Successful exploitation of this vulnerability could allow an unauthenticated attacker to perform arbitrary code execution.
Criticality: Medium
Update/Patch: https://support.citrix.com/article/CTX267027
0 Comments