Please see Security Advisories for the week ending June 26, 2020
- Apache Releases Security Advisory for Apache Tomcat
- Cisco Releases Security Advisory for Telnet Vulnerability in IOS XE Software
- VMware Security Updates for Multiple Products
- Security Updates for Chrome (83.0.4103.116)
- Adobe Magento Security Updates Available
________________________________
Apache Releases Security Advisory for Apache Tomcat
Situation
Apache has released an advisory to address a vulnerability in Apache Tomcat where an attacker could exploit http request handling, triggering high CPU then denial of service by causing the system to become unresponsive.
Problem
Apache has found a vulnerability in Tomcat where specific http requests could trigger high CPU usage and multiple request could cause denial of service by keeping the CPU busy with the request.
Implication
Unpatched versions of Apache Tomcat are vulnerable to remote Denial of service attacks via this vulnerability.
Need
Apache recommends upgrading to Apache Tomcat 10.0.0-M6 or later- Upgrade to Apache Tomcat 9.0.36 or later- Upgrade to Apache Tomcat 8.5.56 or later
For a brief overview
For a more detailed overview
________________________________
Cisco Releases Security Advisory for Telnet Vulnerability in IOS XE Software
Situation
Cisco has discovered and is working to patch a vulnerability in its IOS XE software platform that could allow a remote attacker to exploit the vulnerability and take over the affected systems.
Problem
In Cisco IOS XE software when persistent telnet is configured, it could be used to leak information and gain access to remote devices.
Implication
Using Telnet is insecure, ssh or HTTPS should be used when possible as there is a layer of security as data traverses between devices its encrypted in motion.
Need
Disable Telnet on all devices if possible and use SSH or HTTPS connections when communicating to devices or sending anything sensitive across a network.
For a brief overview
For a more detailed overview
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-telnetd-EFJrEzPx
________________________________
VMware Security Updates for Multiple Products
Situation
VMware has released security updates to address multiple vulnerabilities found in VMware ESXi, Workstation, Fusion, and VMware Cloud Foundation.
Problem
The most severe of these vulnerabilities are a use-after-free vulnerability in SVGA device (CVE-2020-3962), an off-by-one heap-overflow vulnerability in SVGA device (CVE-2020-3969), and a out-of-bound read issue in Shader Functionality (CVE-2020-3970). All three of these vulnerabilities need local access to a virtual machine with 3D graphics enabled in order to be exploited. These vulnerabilities could allow for arbitrary code execution or the ability to crash the virtual machine leading to a partial denial of service.
Implication
If an attacker is able to successfully exploit the more severe of these vulnerabilities it could allow them to take control of an affected system.
Need
It is strongly recommended to install the latest security updates and patches to protect against these vulnerabilities. For additional information please visit VMware’s security Advisory page for details and patch information.
Additional information
VMware Security Advisory:
https://www.vmware.com/security/advisories/VMSA-2020-0015.html
________________________________
Security Updates for Chrome (83.0.4103.116)
Situation
Google has released a security update for Chrome (83.0.4103.116), for Windows, Mac, and Linux.
Problem
These security updates address vulnerabilities such as denial of service and use after free.
Implication
CVE-2020-6509 has been reserved. Information about the vulnerabilities are kept hidden until a majority of users have patched.
Need
Manually update Chrome to the latest version or restart the browser when you see the update icon on the top right.
________________________________
Adobe Magento Security Updates Available
Situation
Adobe Magento has issued security updates for Magento Commerce and Magento Open Source addressing discovered vulnerabilities.
Problem
Adobe Magento has released a patch for two vulnerabilities, CVE-2020-9664 which can allow a PHP object injection and CVE-2020-9665 which can allow a stored cross-site scripting attack. These vulnerabilities affect Magento Commerce versions 1.14.4.5 and earlier and Magento Open Source versions 1.9.4.5 and earlier
Implication
If an attacker is able to successfully exploit the vulnerability CVE-2020-9664 they could perform an arbitrary code execution on the affected system. And if an attacker is able to successfully exploit the vulnerability CVE-2020-9665 they could obtain sensitive information on the affected system.
Need
It is recommended to apply the patches issued for both Magento Commerce and Magento Open Source as soon as possible.
Additional information
Adobe Magento security advisory:
https://helpx.adobe.com/security/products/magento/apsb20-41.html