The security feed is a resource for MSPs and IT professionals to stay up to date with the latest cybersecurity news and vulnerability alerts related to OS, browsers, VPN and RDP. Protect your business and your clients with security news as it comes.

VMware Patches Critical Vulnerabilities in vCenter Server and Cloud Foundation

Tuesday, May 25, 2021

VMware has patched multiple critical vulnerabilities in their vCenter Server and Cloud Foundation products.

These vulnerabilities could be exploited by a remote attacker to take control of an affected system.

Administrators should update immediately to avoid potential exploitation.

Read the full details here:
VMware Security Advisory VMSA-2021-0010

Windows Security Updates Released (May 2021)

Tuesday, May 11, 2021

Microsoft has released May 2021 security updates for Windows 10/8/7, Windows Server 2016/2012/2008, and Microsoft Exchange Server 2019/2016/2013.

These updates include 55 security fixes. Users should update as soon as possible to avoid potential exploitation.

System administrators should update servers as soon as possible to avoid potential exploitation.

Important links:
How to update Windows
May 2021 Security Updates (Release Notes)

Cisco Patches Critical Vulnerabilities in SD-WAN vManage and HyperFlex HX

Wednesday, May 5, 2021

Cisco has released software updates to fix critical vulnerabilities in Cisco SD-WAN vManage and the web interface for HyperFlex HX servers.

Attackers could exploit these vulnerabilities to take control of an affected system.

Administrators should apply updates immediately to avoid potential exploitation.

Important links:
Cisco SD-WAN vManage Software Vulnerabilities
Cisco HyperFlex HX Command Injection Vulnerabilities

The Samba Team Patches Vulnerabilities in Samba 4.14.4, 4.13.8 and 4.12.15

Thursday, April 29, 2021

The Samba Team has released security updates to address a vulnerability in multiple versions of Samba. An attacker could exploit this vulnerability to gain unauthorized access to files.

Read the full details here:
Samba 4.14.4, 4.13.8 and 4.12.15 Security Releases

Windows Security Updates Released (April 2021)

Tuesday, April 13, 2021

Microsoft has released April 2021 security updates for Windows 10/8/7, Windows Server 2012/2008, Microsoft Exchange Server 2019/2016/2013, and SharePoint Server 2019.

These updates include 40 security fixes. Users should update as soon as possible to avoid potential exploitation.

System administrators should update servers immediately to mitigate newly disclosed Microsoft Exchange vulnerabilities.

Important links:
How to update Windows
April 2021 Security Updates (Release Notes)

VMware Patches Critical Vulnerability in Carbon Black Cloud Workflow

Thursday, April 1, 2021

VMware has patched a critical security vulnerability in Carbon Black Cloud Workflow that could allow a remote attacker to take control of an affected system.

Administrators should update to version 1.0.2 immediately to avoid potential exploitation.

Read the full details here:
VMware Security Advisory VMSA-2021-0005

The Samba Team Patches Critical Vulnerabilities in Samba Software

Wednesday, March 24, 2021

The Samba Team has released security updates to address vulnerabilities in multiple versions of Samba. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Read the full details here:
Samba 4.14.2 (4.14.1), 4.13.7 (4.13.6) and 4.12.14 (4.12.13) Security Releases

Adobe Patches Critical Vulnerabilities in ColdFusion

Monday, March 22, 2021

Adobe has patched a critical vulnerability in ColdFusion that could be exploited to take control of a vulnerable system.

ColdFusion software should be updated immediately to avoid potential exploitation.

Read the full details here:
Adobe Security Bulletin APSB21-16: Security updates available for Adobe ColdFusion

General Advisory: Microsoft Releases One-Click Mitigation Tool for Critical On-Premises Exchange Vulnerabilities

Monday, March 15, 2021

Microsoft has released a one-click mitigation tool as an interim mitigation for on-premises exchange vulnerabilities. It’s designed to prevent attacks for servers that have not yet applied the on-premises exchange security updates.

The on-premises exchange vulnerabilities are being exploited in the wild at an alarming rate, causing CISA to issue an emergency directive on March 3rd, 2021.

Attackers can gain persistent system access and control of an enterprise network without authenticating, and are known to install malware on compromised systems.

Any on-premises exchange servers should run the mitigation tool immediately to prevent exploitation of these vulnerabilities and then apply security updates as soon as possible.

Read the full details here:
One-Click Microsoft Exchange On-Premises Mitigation Tool – March 2021

Windows Security Updates Released (March 2021)

Tuesday, March 9, 2021

Microsoft has released March 2021 security updates for Windows 10/8/7 and Windows Server 2012/2008. These updates include 44 security fixes. Users should update as soon as possible to avoid potential exploitation.

Important links:
How to update Windows
March 2021 Security Updates (Release Notes)

Subscribe to the Feed

RSS

Categories

All
General Advisories
(17)
News
(10)
Splashtop
(22)
Security Blog
(20)
Security News
(2)
IT Security Updates
(56)
VPN (Virtual Private Network)
(13)
RDP (Remote Desktop Protocol)
(3)
Networking (Routers, Switches)
(14)
Servers
(42)
Platform Security Updates
(137)
Web Browsers
(76)
Windows
(20)
MacOS
(15)
iOS
(16)
Android
(7)
Software
(9)