LINK Microsoft has released what looks to be an out of band patch – Microsoft MSHTML Remote Code Execution Vulnerability – CVE 2021 40444 Looks like it needs to be prioritized.
LINK Time to investigate updating Ghostscript to avoid this RCE.
LINK Its time again.
LINK Examine the link for more details on a new vulnerability and exploit. The particulars are important as they are pertinent to EOL hardware as well.
LINK Just a bit of an update – It was being reported previously that the WD My Book Hard Drives that were connected online were being wiped and reset by an older vulnerability. That looks to NOT be the case, it looks like a new zero-day
LINK A new Zero Day RCE for Lexmark printers (big surprise) – No fix yet, but we hope ones are coming
LINK Google has had six I zero-days in the last month or two (don’t remember clearly) but they have been busy. If you have Chrome – Time to examine it in your infrastructure because of ALL the different updates.
LINK Another new update from Google to Chrome because of a new Zero Day – Take action
LINK Fancy Product Designer is a tool that enables businesses to offer customizable products, allowing customers to design any kind of item ranging from T-shirts to phone cases by offering the ability to upload images and PDF files that can be added to the products. It is currently being attacked by a zero-day. Update now.
LINK HPE released an update for their Insight Manager for a zeroday RCE that affected this product. Update now.