Apple Releases Security Updates for Multiple Products

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators to  review the Apple security pages for the following products and apply the necessary updates: iOS 14.3 and iPadOS 14.3 macOS Server 5.11 iOS 12.5 tvOS 14.3 watchOS 6.3 Safari 14.0.2 watchOS 7.2 macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave...

Adobe Releases Security Updates

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.   Therefore, Bhutan Computer Incident Response Team recommended users and administrators to  review the following Adobe Security Bulletins and apply the necessary updates. Acrobat and Reader APSB20-75 Lightroom APSB20-74 Experience Manager APSB20-72 Prelude APSB20-70...

Cisco Releases Security Advisory for Vulnerability in AnyConnect Software

Cisco has released a security advisory on an Arbitrary Code Execution vulnerability—CVE-2020-3556—affecting Cisco AnyConnect Secure Mobility Client devices. A remote attacker could exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators  to review the Cisco Security Advisory and apply the necessary updates or workarounds....

Apache Releases Security Advisory for Apache Tomcat

The Apache Software Foundation has released a security advisory to address a vulnerability in Apache Tomcat. An attacker could exploit this vulnerability to cause a denial-of-service condition. Therefore, Bhutan Computer Incident Response Team recommended users and administrators toreview the Apache security advisory for CVE-2020-17527 and upgrade to the appropriate version....

Drupal Releases Security Updates

Drupal has released security updates to address vulnerabilities in Drupal 7, 8.8 and earlier, 8.9, and 9.0. An attacker could exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators to review Drupal Advisory SA-CORE-2020-013 and apply the necessary updates....