Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Acrobat and Reader APSB20-75 Lightroom APSB20-74 Experience Manager APSB20-72 Prelude APSB20-70...
Cisco Releases Security Advisory for Vulnerability in AnyConnect Software
Cisco has released a security advisory on an Arbitrary Code Execution vulnerability—CVE-2020-3556—affecting Cisco AnyConnect Secure Mobility Client devices. A remote attacker could exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators to review the Cisco Security Advisory and apply the necessary updates or workarounds....
Apache Releases Security Advisory for Apache Tomcat
The Apache Software Foundation has released a security advisory to address a vulnerability in Apache Tomcat. An attacker could exploit this vulnerability to cause a denial-of-service condition. Therefore, Bhutan Computer Incident Response Team recommended users and administrators toreview the Apache security advisory for CVE-2020-17527 and upgrade to the appropriate version....
Drupal Releases Security Updates
Drupal has released security updates to address vulnerabilities in Drupal 7, 8.8 and earlier, 8.9, and 9.0. An attacker could exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommended users and administrators to review Drupal Advisory SA-CORE-2020-013 and apply the necessary updates....
Google has released Chrome version 86.0.4240.198 for Windows, Mac, and Linux. This version addresses CVE-2020-16013 and CVE-2020-16017. An attacker could exploit one of these vulnerabilities to take control of an affected system. These vulnerabilities have been detected in exploits in the wild. Therefore Bhutan Computer Incident Response Team recommends users and administrators to review the following resources and apply the necessary updates. Google Chrome Release Multi-State Information Sharing and Analysis Center (MS-ISAC) Advisory 2020-154...