Please see Security Advisories for the week ending August 28, 2020
- Cisco Releases Security Updates for Multiple Products
- Security Updates Released for Firefox, Firefox ESR, and Thunderbird
- Security Update for Chrome version 85.0.4183.83
________________________________
Cisco Releases Security Updates for Multiple Products
Situation
Cisco has identified multiple vulnerabilities in their product environments which could be exploited if not patched.
Problem
Cisco has identified several vulnerabilities that if exploited may allow attackers to remotely take control of the affected systems and services.
Implication
Cisco has found vulnerabilities in multiple product lines. The current total impact affects the following product environments, Cisco FXOS and NX-OS, Cisco Nexus 3000 and 9000 series switches. If left unpatched this leaves an attack surface for malicious attacks that could allow the attackers to use denial of service attacks to take over the system and or use the systems as a pivot point into the network.
Need
Cisco Recommends updating and installing the latest patches to the affected products to reduce the attack surface. For more information please visit Cisco Security Advisory page.
For a brief overview
https://us-cert.cisa.gov/ncas/current-activity/2020/08/27/cisco-releases-security-updates
For a more detailed overview
https://tools.cisco.com/security/center/publicationListing.x
________________________________
Security Updates Released for Firefox, Firefox ESR, and Thunderbird
Situation
Mozilla has released security updates for Firefox, Firefox ESR, and Thunderbird.
Problem
These updates address multiple high-level CVEs for all Mozilla products.
Implication
These CVEs, when exploited, can lead to escalation of privilege, side channel attacks, and remote code execution.
Need
Please update Firefox, Firefox ESR, and Thunderbird to the latest version when available.
For a more detailed overview of each product, click the links below.
________________________________
Security Update for Chrome version 85.0.4183.83
Situation
Chrome has released security updates for Chrome for Windows, Mac, and Linux.
Problem
This update addresses 20 vulnerabilities of various types, ranging from low to high CVEs.
Implication
Attackers that exploits these vulnerabilities can take control of the affected system.
Need
Please update Chrome to the latest version when available.
For a more detailed overview
https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop_25.html