How to fix the Windows AppX Installer Spoofing Vulnerability with Vulnerability Manager Plus*
*- This also applies to the Vulnerability Management add-on to Desktop Central. The Windows AppX Installer Spoofing Vulnerability (CVE-2021-43890) was released on December 14, 2021. The mitigation and workarounds for this vulnerability can be found
Mozilla fixes several high severity vulnerabilities in Firefox 98, Firefox ESR 91.7 and Thunderbird 91.7
Hey everyone, Mozilla has released fixes for several high-severity vulnerabilities in Firefox 98, Firefox ESR 91.7 and Thunderbird 91.7. The details of the vulnerabilities fixed can be found below: CVE ID Description Impact CVE-2022-26383 (Firefox,
Patch Tuesday March 2022 - Supported updates
Hello everyone, There was a delay in supporting the March 2022 Patch Tuesday updates due to an unexpected glitch in our internal servers. We apologize for the inconvenience and will ensure that hiccups like this don't affect your experience in the future.
Mozilla fixes zero-day vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1 and Thunderbird 91.6.2
Hey everyone, Mozilla has released security updates to fix two zero-day vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1 and Thunderbird 91.6.2. Tracked as CVE-2022-26485 and CVE-2022-26486, Mozilla said, "We have had reports of attacks in the
Google releases several security fixes in its Chrome 99.0.4844.51 Stable Channel update.
Hello everyone, Chrome stable channel has been updated to 99.0.4844.51 for Windows, Mac, and Linux. This update comes with 28 security fixes. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2022-0789 Heap buffer
Microsoft fixes a zero-day threat and several high-severity vulnerabilities in Edge (Chromium-based) 98.0.1108.55 (Stable Channel update).
Hey everyone, Microsoft Edge (Chromium-based) has been updated to 98.0.1108.55 for Windows, Mac, and Linux. This Stable channel update fixes a zero-day threat (tracked as CVE-2022-0609) as well as a number of high-severity vulnerabilities. Here are
Google fixes a zero-day threat and several high-severity vulnerabilities in Chrome 98.0.4758.102 Stable channel update.
Hello everyone, Chrome stable channel has been updated to 98.0.4758.102 for Windows, Mac, and Linux. This update fixes a zero-day threat (tracked as CVE-2022-0609) as well as a number of high-severity vulnerabilities. In a security advisory released
Deploying macOS 12 Monterey security updates on Silicon machines using Vulnerability Manager Plus
Hello everyone, Apple has introduced new security policies for Silicon machines that requires end-user authentication for installing security updates. You can refer to this link from the vendor for more details on the same. macOS 12 Monterey security
Microsoft fixes a security vulnerability in Edge (Chromium-based) 98.0.1108.50 (Stable Channel update).
Hey everyone, Microsoft Edge (Chromium-based) has been updated to 98.0.1108.50 for Windows, Mac, and Linux. This Stable Channel update includes 1 security fix, which is a Microsoft Edge-specific update. Here are the details: CVE ID Impact Severity
Patch Tuesday February 2022 - Supported updates
Hello everyone, Below is the list of Patch Tuesday updates, supported this month New Security Bulletins : 2022-02 Security Only Quality Update for Windows Server 2008 (KB5010403) (ESU) (CVE-2022-21989) 2022-02 Security Only Quality Update for Windows
Extended Security Updates (ESU) for Windows 7 and Windows Server 2008 - Year 3 support
Hello everyone,Microsoft has announced it's final leg of the Extended Security Updates (ESUs) support for Windows 7 and Windows Server 2008. Versions ESU Support remaining Start and End date Windows 7 SP1 and Windows 7 Professional for Embedded Systems
Mozilla fixes high severity security vulnerabilities in Firefox 97, and Firefox ESR 91.6.
Hey everyone, Mozilla has fixed several high severity security vulnerabilities in Firefox 97, and Firefox ESR 91.6. The details of the vulnerabilities fixed are as follows: Platform CVE ID Vulnerability Impact Firefox 97 CVE-2022-22753 Privilege Escalation
Mozilla fixes high severity security vulnerabilities in Firefox 97, and Firefox ESR 91.6.
Hey everyone, Mozilla has fixed several high severity security vulnerabilities in Firefox 97, and Firefox ESR 91.6. The details of the vulnerabilities fixed are as follows: Platform CVE ID Vulnerability Impact Firefox 97 CVE-2022-22753 Privilege Escalation
Microsoft fixes several security vulnerabilities in Edge (Chromium-based) 98.0.1108.43 (Stable Channel update).
Hey everyone, Microsoft Edge (Chromium-based) has been updated to 98.0.1108.43 for Windows, Mac, and Linux. This Stable Channel update includes 22 security fixes, 3 of which are Microsoft Edge-specific updates. Here are the details: CVE ID Vulnerability
Google releases several security fixes and improvements in its Chrome 98.0.4758.80 stable channel update.
Hello everyone, Chrome stable channel has been updated to 98.0.4758.80/81/82 for Windows and 98.0.4758.80 for Mac, and Linux. This update comes with a number of security fixes and improvements. The details of the vulnerabilities fixed are as follows:
Microsoft fixes several security vulnerabilities in Edge for business (Chromium-based) 97.0.1072.69 (Stable Channel update).
Hey everyone, Microsoft Edge for business (Chromium-based) has been updated to 97.0.1072.69 for Windows, Mac, and Linux. This Stable Channel update includes 22 security fixes. Here are the details of the vulnerabilities fixed: CVE ID Vulnerability Severity
Google releases several security fixes in its Chrome 97.0.4692.99 stable channel update.
Hey everyone, Chrome stable channel has been updated to 97.0.4692.99 for Windows, Mac, and Linux. This update comes with a number of security fixes. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2022-0289
Latest Windows server updates causes spontaneous reboots and breaks Hyper-V
Hello everyone, Microsoft released the Windows Server 2012 R2 KB5009624, the Windows Server 2016 KB5009546, the Windows Server 2019 KB5009557 update, and the Windows Server 2022 KB5009555 update recently. But after installing these patches, IT admins
Windows KB5009543 and KB5009566 updates break L2TP VPN connections
Hello everyone, January Patch Tuesday updates are out and Windows administrators have been seeing issues with the Windows 10 KB5009543 and Windows 11 KB5009566 cumulative updates. These updates seemingly break L2TP VPN connections. The issue: Users who
January 2022 Patch Tuesday - Supported updates
Hello everyone, Here's the list of January 2022 Patch Tuesday updates supported by ManageEngine New Security Bulletins : Security Update For Exchange Server 2013 CU23 (KB5008631) (CVE-2022-21846) (CVE-2022-21855) (CVE-2022-21969) Security Update For
Google releases several fixes and improvements in its Chrome 97.0.4692.71 stable channel update
Hello everyone, Chrome stable channel has been updated to 97.0.4692.71 for Windows, macOS, and Linux. This update comes with 37 security fixes and various other improvements. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability
Log4j vulnerability - Denial of Service (CVE-2021-45105)
Hello everyone, Another vulnerability has been detected in the fixes rolled out for Apache Log4j (Logging Library for Java. This vulnerability is tracked as CVE-2021-45105 and Apache Log4j2 versions 2.0-alpha1 through 2.16.0 are vulnerable. This vulnerability
Log4j vulnerability - Apache Log4j Vulnerability (CVE-2021-45046)
Hello everyone, It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) to craft malicious input data using
Log4j vulnerability - Handling for the DMZ tool
Hello everyone, Note: This is exclusively for customers using the DMZ tool for closed network patching. The DMZ tool alone has a dependency file that uses Log4j library and hence is vulnerable. The rest of Desktop Central / Patch Manager Plus / Vulnerability
Microsoft fixes several high-severity security vulnerabilities in Edge for Business (chromium) 96.0.1054.57 update
Hello everyone, Microsoft Edge for Business (chromium) has been updated to 96.0.1054.57 for Windows, macOS, and Linux. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2021-4098 Insufficient data validation
Google fixes several high-severity security vulnerabilities in Chrome 96.0.4664.110 stable channel update
Hello everyone, Chrome stable channel has been updated to 96.0.4664.110 for Windows, macOS, and Linux. This update comes with fixes for 5 security vulnerabilities of which CVE-2021-4102 is exploited in the wild. The details of the vulnerabilities fixed
Apache Log4Shell vulnerability (CVE-2021-44228)
The identified Log4Shell vulnerability (CVE-2021-44228) is classified as a Zero-Day Vulnerability. The name Log4Shell refers to the fact that this bug is present in a popular Java logging library called Log4j, which when exploited, can allow attackers
Patch Tuesday December 2021 - Updates
Hello everyone, Here is the list of supported December 2021 Patch Tuesday updates New Security Bulletins : 2021-12 Security Only Quality Update for Windows Server 2008 (KB5008271) (ESU) (CVE-2021-41333) (CVE-2021-43883) (CVE-2021-43893) 2021-12 Security
Microsoft fixes several high-severity security vulnerabilities in Edge for Business (chromium) 96.0.1054.53 update
Hello everyone, Microsoft Edge for Business (chromium) has been updated to 96.0.1054.53 for Windows, macOS, and Linux. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2021-4052 Use after free in web apps
Mozilla releases security updates for Firefox 95, Firefox ESR 91.4.0, and Thunderbird 91.4.0
Hello everyone,Mozilla has fixed several high severity security vulnerabilities in Firefox 95, Firefox ESR 91.4.0, and Thunderbird 91.4.0. The details of the vulnerabilities fixed are as follows: Platform CVE ID Vulnerability Impact Thunderbird 91.4.0
Google fixes several high-severity security vulnerabilities in Chrome 96.0.4664.93 stable channel update
Hello everyone, Chrome stable channel has been updated to 96.0.4664.93 for Windows, macOS, and Linux. This update comes with fixes for 22 security vulnerabilities. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity
6 Zero-days fixed in November 2021 Patch Tuesday
Hello everyone,November 2021 Patch Tuesday comes with fixes for 55 vulnerabilities, out of which 6 are zero-day vulnerabilities. The details of the zero-day vulnerabilities are as follows: CVE ID Vulnerability Publicly Disclosed Actively Exploited
November Patch Tuesday 2021 supported updates
Hello everyone, Here is a quick update on the supported updates for this month's Patch Tuesday New Security Bulletins : 2021-11 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5007246) (ESU) (CVE-2021-41371) (CVE-2021-38631)
Mozilla releases security updates for Firefox 94, Firefox ESR 91.3, and Thunderbird 91.3
Hello everyone,Mozilla has fixed several high severity security vulnerabilities in Firefox 94, Firefox ESR 91.3, and Thunderbird 91.3. The details of the vulnerabilities fixed are as follows: Platform CVE ID Vulnerability Impact Firefox 94, Firefox
Microsoft Edge for Chromium business updated to 95.0.1020.40, fixes several high-severity security vulnerabilities
Hello everyone, Microsoft Edge for Chromium business has been updated to 95.0.1020.40 for Windows, macOS, and Linux. This update comes with fixes for 8 security vulnerabilities. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability
Google fixes 2 zero-days along with several high-severity security vulnerabilities in Chrome 95.0.4638.69 stable channel update
Hello everyone, Chrome stable channel has been updated to 95.0.4638.69 for Windows, macOS, and Linux. This update comes with fixes for 8 security vulnerabilities. Google has disclosed that it is aware of exploits for 2 of these vulnerabilities CVE-2021-38000 and CVE-2021-38003.
Microsoft fixes high-severity security vulnerabilities in Edge for business chromium 95.0.1020.30 update
Hello everyone, Microsoft Edge for business chromium has been updated to 95.0.1020.30 for Windows, macOS, and Linux. This update comes with fixes for 17 security vulnerabilities. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability
Google fixes high-severity security vulnerabilities in Chrome 95.0.4638.54 stable channel update
Hello everyone, Chrome stable channel has been updated to 95.0.4638.54 for Windows, macOS, and Linux. This update comes with fixes for 19 security vulnerabilities. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity
Upgrade to the latest version of the Closed Network tool
Hello everyone, We have updated Vulnerability Manager Plus' Closed Network tool with a few fixes and enhancements. Please check out and download the latest Closed Network tool version here (Link available under the Download and Setup the tool section).
CVE-2021-40449 actively exploited zero-day patched in October 2021 Patch Tuesday
Hello everyone, Microsoft Patch Tuesday October 2021 comes with fixes for 81 vulnerabilities (including Microsoft Edge for chromium updates), of which 4 are zero-day vulnerabilities. Of the 4 zero-days, one is actively exploited and the other 3 are publicly
Next Page