Compatibility issue between desktop Central and Vulnerability manager's agents
Hi, we use desktop central in our company and recently bought a vulnerability manager license, when we add our servers on vulnerability manager SOM, status change to "agent installed successfully" with this remark: "agent needs to be upgraded, please
Chromium Security Updates for Microsoft Edge (Chromium-Based)
Hello All, Microsoft has released a security advisory for Chromium-based Microsoft Edge that fixes several vulnerabilities. Below you can find the detailed information: Microsoft Edge version - 87.0.664.75 Based on Chromium version - 87.0.4280.141
Chrome releases stable channel update to fix several security vulnerabilities
Hello everyone, Chrome has fixed several security vulnerabilities in its stable channel update 87.0.4280.141 for Windows, Mac and Linux, The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2021-21106 Use after
Mozilla fixes a critical vulnerability in Firefox 84.0.2 and Firefox ESR 78.6.1
Hello everyone, Mozilla has fixed a critical security vulnerability in Firefox 84.0.2 and Firefox ESR 78.6.1. The details of the vulnerability are as follows: CVE ID Vulnerability Severity CVE-2020-16044 Use-after-free write when handling a malicious
Security vulnerabilities fixed in Firefox 84, Firefox ESR 78.6 and Thunderbird 78.6
Hello All, Mozilla has released security advisories for Firefox 84, Firefox ESR 78.6, Thunderbird 78.6. A series of security vulnerabilities were fixed in this update. Find the details for the same below. CVE ID Description Impact CVE-2020-16042 Operations
Adobe releases security updates for Acrobat and Reader
Hello everyone, Adobe has released security updates for Acrobat and Reader for Windows and macOS. These updates fix a vulnerability that has been rated 'Important'. The details of the vulnerability and affected versions are as follows: CVE ID Vulnerability
December 2020 Patch Tuesday updates
Hello Everyone, Below is the breakdown of updates released this Patch Tuesday. New Security Bulletins : 2020-12 Security Only Quality Update for Windows Server 2008 Systems (KB4592504) (ESU) 2020-12 Security Only Quality Update for Windows 7 and Windows
Security vulnerabilities fixed in Microsoft Edge for Chromium
Hello everyone, Microsoft Edge for Chromium has been updated to version 87.0.664.57. This update fixes some high severity security vulnerabilities, the details of which are as follows: CVE ID Vulnerability Severity CVE-2020-16037 Use after free
Security vulnerabilities fixed in Chrome with the stable channel 87.0.4280.88 update
Hello everyone,Google has updated the stable channel for Chrome to 87.0.4280.88 for Windows, Mac and Linux. This update fixes some high severity security vulnerabilities, the details of which are as follows: CVE ID Vulnerability Severity CVE-2020-16037
Direct Download of patches to simplify WFH patching - Don't let bandwidth constraints hinder patching for remote machines
Hello everyone, Downloading and deploying patches to remote machines is one of the significant problems faced by IT administrators during the transit to remote work. Remote agents connecting to the server and downloading patches cause significant consumption
Microsoft releases security updated for Edge for business 87.0.664.41
Hello everyone,Microsoft has released security updates for Microsoft Edge for business 87.0.664.41. This update fixes about 19 vulnerabilities, the details of which are as follows: CVE ID Vulnerability Severity CVE-2020-16012 Side-channel information
Security updates released for Apple iTunes
Hello everyone, Apple has also fixed some security vulnerabilities in iTune with the iTune 12.11 for Windows release. The details of the vulnerabilities are as follows: CVE ID Vulnerability Impact CVE-2020-10002 A logic issue was addressed with improved
Security updates released for Google Chrome
Hello everyone, Google chrome has updated its stable channel to 87.0.4280.66 for Windows, macOS, and Linux. This updates fixes various high severity security vulnerabilities as given below: CVE ID Vulnerability Severity CVE-2020-16012 Side-channel
Security vulnerabilities fixed in Firefox 83 and Firefox ESR 78.5
Hello All, Mozilla has released security advisories for Firefox 83 and Firefox ESR 78.5. A series of security vulnerabilities are fixed in this update. Find the details for the same below. CVE ID Description Impact CVE-2020-26951 Parsing mismatches
Upgrade to macOS 11 Big Sur with Vulnerability Manager Plus
Hello everyone, Apple has released it's latest macOS 11 Big Sur, on November 12, 2020 worldwide and we are elated to announce that it is supported by Vulnerability Manager Plus from build version 100620. You can now seamlessly upgrade all your mac devices
2 actively exploited zero-days in Chrome fixed along with updates for Edge for Chromium
Hello everyone, Google has recently patched 2 actively exploited zero-day vulnerabilities in Chrome, making this the fourth and fifth actively exploited vulnerability addressed in the past week. The details of the vulnerabilities are as follows: CVE
Security updates released for Chrome, Firefox 82.0.3, Firefox ESR 78.4.1, and Thunderbird 78.4.2
Hello everyone, Along with this month's Patch Tuesday updates, Google and Mozilla released updates for Chrome and Firefox respectively. Chrome stable channel has been updated to 86.0.4240.193 for Windows, Mac & Linux. The updates by Google and Mozilla
Patch Tuesday November 2020 Updates
Hi there, This Patch Tuesday brings the following fixes and updates: New Security Bulletins : 2020-11 Security Only Quality Update for Windows Server 2008 Systems (KB4586817) (ESU) (CVE-2020-17087) 2020-11 Security Only Quality Update for Windows 7 and
Adobe releases security updates for Adobe Acrobat & Adobe Reader
Hello All, Adobe has released security updates for Adobe Acrobat and Adobe Reader for Windows and macOS. These updates address critical, important and moderate vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context
Security vulnerabilities fixed in Chrome stable channel update 86.0.4240.183
Hello everyone, Chrome stable channel has been updated to 86.0.4240.183 for Windows, macOS, and Linux. This update comes with fixes for several high severity vulnerabilities. The details of the vulnerabilities are as follows: CVE ID Vulnerability
Oracle releases 8 security patches for Java SE
Hello everyone, Oracle in its Critical Patch Update has released 8 security patches for Java SE. The vulnerabilities addressed are as follows: CVE ID Product Supported versions affected Attack complex CVE-2020-14803 Java SE Java SE: 11.0.8,
Security vulnerabilities fixed in Firefox 82 and Firefox ESR 78.4
Hello everyone, Mozilla has released updates for Firefox 82 and Firefox ESR 78.4. These updates fix several security vulnerabilities, the details of which are as follows: CVE ID Vulnerability Severity CVE-2020-15969 Use-after-free in usersctp High
Security vulnerabilities fixed in Chrome stable channel 86.0.4240.75 update
Hello everyone, Chrome 86 has been promoted to stable channel Chrome 86.0.4240.75, for Windows, Mac and Linux. This update comes with several fixes and improvements. Below are the details of the security fixes: CVE ID Vulnerability Severity CVE-2020-15967 Use after free in payments Critical CVE-2020-15968 Use after free in Blink High CVE-2020-15969 Use after free in WebRTC High CVE-2020-15970 Use after free in NFC High CVE-2020-15971 Use after free in printing
Firefox 81 and Firefox ESR 78.3 patches high severity vulnerabilities
Mozilla patched high-severity vulnerabilities with the release of Firefox 81 and Firefox ESR 78.3. The CVE IDs addressed in the latest version are as follows: CVE ID Description Severity CVE-2020-15677 Download origin spoofing via redirect Moderate CVE-2020-15676 XSS when pasting attacker-controlled data into a contenteditable element Moderate CVE-2020-15678 When recursing through layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free scenario
CISA's Emergency Directive 20-04 mandates federal agencies to mitigate CVE-2020-1472 (Netlogon Elevation of Privilege Vulnerability)
This advisory applies to: All Federal Executive Branch Departments and Agencies, Except for the Department of Defense, Central Intelligence Agency, and Office of the Director of National Intelligence. On August 11, 2020, Microsoft issued a security update to mitigate CVE-2020-1472 | Netlogon Elevation of Privilege Vulnerability in Windows Server operating systems. This vulnerability exists within the Microsoft Windows Netlogon Remote Protocol (MS-NRPC), an interface used for user and machine authentication
Google Chrome releases stable channel update 85.0.4183.121
Hello folks, Google Chrome has recently updated the stable channel to 85.0.4183.121. The CVE IDs addressed in the latest version and their corresponding severity are as follows: CVE-2020-15960 - High CVE-2020-15961 - High CVE-2020-15962 - High CVE-2020-15963 - High CVE-2020-15965 - High CVE-2020-15966 - Medium CVE-2020-15964 - Low Vulnerability Manager Plus now supports patches to address the aforementioned CVEs and update Google Chrome to the latest version 85.0.4183.121 for Windows, Mac,
Patch Tuesday September 2020 - Supported updates
Hello there, Below is the breakdown of all the updates released in September 2020 Patch Tuesday. New Security Bulletins : 2020-09 Security Monthly Quality Rollup for Windows Server 2008 Systems (KB4577064) (ESU) - Not Supported 2020-09 Security Only Quality Update for Windows Server 2008 Systems (KB4577070) (ESU) 2020-09 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 Systems (KB4577053) (ESU) 2020-09 Security Only Quality Update for Windows Server 2012 Systems (KB4577048) 2020-09
Chrome stable channel update fixes 20 security vulnerabilities
Hello everyone, Chrome 85 has been promoted to the stable channel 85.0.4183.83 for Windows, macOS, and Linux. This update comes with fixes for 20 security vulnerabilities, the details of which are given below: CVE ID Vulnerability details Severity CVE-2020-6558 Insufficient policy enforcement in iOS High CVE-2020-6559 Use after free in presentation API High CVE-2020-6560 Insufficient policy enforcement in autofill Medium CVE-2020-6561 Inappropriate implementation in Content
Security updates released for Firefox 80, ESR 68.12, and ESR 78.2
Hello everyone, Mozilla has released security updates for Firefox 80, Firefox ESR 68.12, and Firefox ESR 78.2. Most of the vulnerabilities fixed are of high severity. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability details Severity CVE-2020-15663 Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege High CVE-2020-15664 Attacker-induced prompt for extension installation High CVE-2020-12401 Timing-attack
Out-of-band updates released for Windows 8.1 and Windows Server 2012 R2
Hello everyone, Microsoft on August 19, released an emergency out-of-band update for two privilege escalation vulnerabilities disclosed in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 systems. The vulnerabilities are tracked as CVE-2020-1530 and CVE-2020-1537. Both of these vulnerabilities exist in Windows Remote Access Service (RAS) and when exploited, grant elevated privileges to remote attackers. A patch for both vulnerabilities for Windows 10, Windows 7, and Windows Server 2008,
August Patch Tuesday - Non-security and Third party updates
Hello everyone, Below is the list of the supported Non-security and Third party updates from August Patch Tuesday NON-SECURITY UPDATES : Update for Microsoft Office 2016 (KB4484418) Update for Microsoft Project 2016 (KB4484477) Update for Skype for Business 2016 (KB4484464) Update for Microsoft Office 2010 (KB4484454) Update for Microsoft PowerPoint 2010 (KB4092435) NON-SECURITY SQL SERVER UPDATES : Cumulative Update Package 6 for SQL Server 2019 - KB4563110 Cumulative Update Package 14 for SQL
August Patch Tuesday security updates
Hello everyone, Below is the list of the security updates supported from August Patch Tuesday New Windows Security Updates : 2020-08 Security Only Quality Update for Windows 8.1 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 R2 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 (KB4571702) (CVE-2020-1464) 2020-08 Security Monthly Quality Rollup for Windows 8.1 (KB4571703) (CVE-2020-1464) (CVE-2020-1380) 2020-08 Security
Security fixes released for Adobe Acrobat and Reader
Hello everyone, Adobe has released security updates for Acrobat and Reader for Windows and macOS. Most of the updates are rated 'critical' and 'important'. Successful exploitation of these vulnerabilities could lead to arbitrary code execution in the context of the current user. The affected versions are as follows: Acrobat DC Continuous - 2020.009.20074 and earlier versions Acrobat Reader DC Continuous - 2020.009.20074 and earlier versions Acrobat 2017 Classic 2017 - 2017.011.30171 and earlier versions
Chrome stable channel update 84.0.4147.125 fixes several security vulnerabilities
Hello everyone, Google has updated its stable channel for Chrome to 84.0.4147.125 for Windows, macOS, and Linux. This update comes with 15 security fixes. The vulnerabilities addressed are as follows: CVE ID Vulnerability Severity CVE-2020-6542 Use after free in ANGLE High CVE-2020-6543 Use after free in task scheduling High CVE-2020-6544 Use after free in media High CVE-2020-6545 Use after free in audio High CVE-2020-6546 Inappropriate implementation in installer
Security updates released for Firefox 79 and Firefox ESR 68.11
Hello everyone, Mozilla has fixed several security vulnerabilities in Firefox 79 and Firefox ESR 68.11. The details of the vulnerabilities are as follows: CVE ID Vulnerability Severity CVE-2020-15652 Potential leak of redirect targets when loading scripts in a worker High CVE-2020-6514 WebRTC data channel leaks internal address to peer High CVE-2020-15655 Extension APIs could be used to bypass Same-Origin Policy High CVE-2020-15653 Bypassing iframe sandbox when allowing
Chrome updated to stable channel 84.0.4147.105
Hello everyone, Google Chrome has been updated to stable channel 84.0.4147.105 for Windows, macOS, and Linux. This update fixes several security vulnerabilities, the details of the same are presented below: CVE ID Vulnerability Severity CVE-2020-6537 Type Confusion in V8 High CVE-2020-6538 Inappropriate implementation in WebView High CVE-2020-6532 Use after free in SCTP High CVE-2020-6539 Use after free in CSS High CVE-2020-6540 Heap buffer overflow in Skia High
Security updates for Microsoft Edge (Chromium - based)
Hello everyone, Security updates for Microsoft Edge (Chromium-based) has been released to fix several vulnerabilities. The details of the vulnerabilities addressed are as follows: CVE-ID Vulnerability details Severity CVE-2020-6510 Heap buffer overflow in background fetch Critical CVE-2020-6511 Side-channel information leakage in content security policy High CVE-2020-6512 Type Confusion in V8 High CVE-2020-6513 Heap buffer overflow in PDFium High CVE-2020-6514
Critical remote code execution vulnerability in Windows DNS server (CVE-2020-1350)
Hello there, Patch Tuesday July 2020 comes with a fix for the critical vulnerability CVE-2020-1350 in Windows DNS Server. This vulnerability is classified 'wormable' and has been given a CVSS score of 10. Cause of this vulnerability: This vulnerability exists due to the improper handling of requests by Windows Domain Name System (DNS) Servers. Impact of this vulnerability: To exploit this vulnerability, an unauthenticated attacker should send malicious requests to a Windows DNS server.
Patch Tuesday July 2020 - Supported updates
Hello everyone, Below is breakdown of all the updates released this Patch Tuesday. New Security Bulletins : 2020-07 Servicing Stack Update for Windows 10 Version 1809 and Windows Server 2019 (KB4558997) 2020-07 Servicing Stack Update for Windows 10 Version 1803 (KB4565552) 2020-07 Servicing Stack Update for Windows 10 Version 1709 (KB4565553) 2020-07 Servicing Stack Update for Windows 10 Version 1903 and Windows Server, version 1903 (KB4565554) 2020-07 Servicing Stack Update for Windows 10 Version
Google stable channel updated to 84.0.4147.89
Hello everyone, Chrome 84 has been updated to stable channel 84.0.4147.89 for Windows, Mac, and Linux. Various security issues have been fixed with this release, the details of which are as follows: CVE-ID Vulnerability details Severity CVE-2020-6510 Heap buffer overflow in background fetch Critical CVE-2020-6511 Side-channel information leakage in content security policy High CVE-2020-6512 Type Confusion in V8 High CVE-2020-6513 Heap buffer overflow in PDFium High
Next Page