Year: 2021

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. Bhutan Computer Incident Response Team recommended users and administrators to review the Microsoft’s February 2021 Security Update Summary and Deployment Information and apply the necessary updates...

The Apache Software Foundation has released a security advisory to address a vulnerability affecting multiple versions of Apache Tomcat. An attacker could exploit this vulnerability to obtain sensitive information.    Bhutan Computer Incident Response Team recommended users and administrators to review the Apache security advisory for CVE-2021-24122 and upgrade to the appropriate version. ...

Juniper Networks has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to cause take control of an affected system. Therefore,Bhutan Computer Incident  Response Team recommended users and administrators to review the  Juniper Networks security advisories page and apply the necessary updates....

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. Therefore,Bhutan Computer Incident  Response Team recommended users and administrators to review the  following Cisco Advisories and apply the necessary updates: AnyConnect Secure Mobility Client for Windows DLL Injection Vulnerability cisco-sa-anyconnect-dll-injec-pQnryXLf Connected Mobile Experiences Privilege Escalation Vulnerability cisco-sa-cmxpe-75Asy9k Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Command Injection Vulnerabilities cisco-sa-rv-command-inject-LBdQ2KRN Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution...

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. Therefore,Bhutan Computer Incident  Response Team recommended users and administrators to review the Microsoft’s January 2021 Security Update Summary and Deployment Information and apply the necessary updates....