Month: December 2020

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators to  review the Apple security pages for the following products and apply the necessary updates: iOS 14.3 and iPadOS 14.3 macOS Server 5.11 iOS 12.5 tvOS 14.3 watchOS 6.3 Safari 14.0.2 watchOS 7.2 macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave...

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.   Therefore, Bhutan Computer Incident Response Team recommended users and administrators to  review the following Adobe Security Bulletins and apply the necessary updates. Acrobat and Reader APSB20-75 Lightroom APSB20-74 Experience Manager APSB20-72 Prelude APSB20-70...

Cisco has released a security advisory on an Arbitrary Code Execution vulnerability—CVE-2020-3556—affecting Cisco AnyConnect Secure Mobility Client devices. A remote attacker could exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators  to review the Cisco Security Advisory and apply the necessary updates or workarounds....

The Apache Software Foundation has released a security advisory to address a vulnerability in Apache Tomcat. An attacker could exploit this vulnerability to cause a denial-of-service condition. Therefore, Bhutan Computer Incident Response Team recommended users and administrators toreview the Apache security advisory for CVE-2020-17527 and upgrade to the appropriate version....