Advisory Week


Week 42, 2024
National Cyber Awareness System
 
Cisco Releases Security Bundle for Cisco ASA, FMC, and FTD Software
CISA Releases Four Industrial Control Systems Advisories
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA, US, and International Partners Release Joint Guidance to Assist Software Manufacturers with Safe Software Deployment Processes
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Releases One Industrial Control Systems Advisory
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
Ubuntu Security Notices
 
libheif vulnerability: USN-7082-1
Go vulnerabilities: USN-7081-1
Unbound vulnerability: USN-7080-1
WebKitGTK vulnerabilities: USN-7079-1
Firefox vulnerability: USN-7078-1
Linux kernel (GKE) vulnerabilities: USN-7072-2
libgsf vulnerabilities: USN-7062-2
cups-browsed vulnerability: USN-7042-3
AMD Microcode vulnerability: USN-7077-1
Red Hat Security Advisory
 
Important: krb5 security update: RHSA-2024:8461
Important: edk2 security update: RHSA-2024:8455 / RHSA-2024:8449
Moderate: python3.12 security update: RHSA-2024:8447
Moderate: python3.9 security update: RHSA-2024:8446
Important: OpenShift Container Platform 4.16.18 packages and security update: RHSA-2024:8263
Important: OpenShift Container Platform 4.16.18 bug fix and security update: RHSA-2024:8260
Important: Logging for Red Hat OpenShift - 5.8.14: RHSA-2024:8317
Important: Logging for Red Hat OpenShift - 6.0.1: RHSA-2024:8314
Important: Logging for Red Hat OpenShift - 5.6.25: RHSA-2024:8318
Important: Logging for Red Hat OpenShift - 5.9.8: RHSA-2024:8315
Moderate: OpenShift Container Platform4.14.39 security update: RHSA-2024:8238
Moderate: python3.11 security update: RHSA-2024:8374
Important: OpenShift Container Platform 4.14.39 security update: RHSA-2024:8235
Moderate: python-idna security update: RHSA-2024:8365
Moderate: python39:3.9 and python39-devel:3.9 security update: RHSA-2024:8359
Important: NetworkManager-libreswan security update: RHSA-2024:8358 / RHSA-2024:8357 / RHSA-2024:8356 / RHSA-2024:8355 / RHSA-2024:8354 / RHSA-2024:8353 / RHSA-2024:8338 / RHSA-2024:8312
Important: NetworkManager-libreswan:1.2.14 security update: RHSA-2024:8352
Important: grafana:7.3.6 security update: RHSA-2024:8351
Important: OpenShift Container Platform 4.17.2 packages and security update: RHSA-2024:8232
Important: OpenShift Container Platform 4.17.2 bug fix and security update: RHSA-2024:8229
Moderate: Kube Descheduler Operator for Red Hat OpenShift 5.1.0 for RHEL 9: RHSA-2024:6341
Low: OpenShift Container Platform 4.17.2 security and extras update: RHSA-2024:8228
Important: Red Hat Integration Camel K 1.10.8 release and security update.: RHSA-2024:8339
Important: Red Hat build of Cryostat security update: RHSA-2024:8329
Important: grafana security update: RHSA-2024:8327
Important: Network Observability 1.7.0 for OpenShift: RHSA-2024:8014
Cisco Security Advisory
 
Cisco Secure Firewall Management Center Software Command Injection Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software FXOS CLI Root Privilege Escalation Vulnerability
Multiple Cisco Products Snort Rate Filter Bypass Vulnerability
Cisco Firepower Threat Defense Software TCP Snort 3 Detection Engine Bypass Vulnerability
Cisco Firepower Threat Defense Software and Cisco FirePOWER Services TCP/IP Traffic with Snort 2 and Snort 3 Denial of Service Vulnerability
Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Appliances TCP UDP Snort 2 and Snort 3 Denial of Service Vulnerability
Cisco Firepower Threat Defense Software Vulnerability Database with Snort Detection Engine Security Policy Bypass and Denial of Service Issue
Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service Vulnerability
Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability
Cisco Firepower Threat Defense Software Geolocation ACL Bypass Vulnerability
Cisco Secure Firewall Management Center Software Cross-Site Scripting and Information Disclosure Vulnerabilities
Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerabilities
Cisco Secure Firewall Management Center Software SQL Injection Vulnerability
Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities
Cisco Secure Firewall Management Center Privilege Escalation Vulnerability
Cisco Secure Firewall Management Center Software HTML Injection Vulnerability
Cisco Secure Firewall Management Center Software Arbitrary File Read Vulnerability
Cisco Secure Firewall Management Center Software Cluster Backup Command Injection Vulnerability
Cisco Secure Firewall Management Center Software Command Injection Vulnerability
Cisco Secure Client Software Denial of Service Vulnerability
Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Cross-Site Scripting Vulnerabilities
Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL VPN Memory Management Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software SNMP Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software NSG Access Control List Bypass Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software IKEv2 VPN Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Dynamic Access Policies Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Brute Force Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access SSL VPN Authentication Targeted Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access SSL VPN Authentication Targeted Denial of Service Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense Software TLS Denial of Service Vulnerability
Cisco Adaptive Security Appliance Software SSH Remote Command Injection Vulnerability
Cisco Adaptive Security Appliance Software SSH Server Resource Denial of Service Vulnerability
Microsoft Security
 
Microsoft October 2024 Security Update Guide
Chromium: CVE -2024-10231 Type Confusion in V8: CVE-2024-10231
Chromium: CVE -2024-10230 Type Confusion in V8: CVE-2024-10230
Chromium: CVE -2024-10229 Inappropriate implementation in Extensions: CVE-2024-10229
CVE-2024-43577 Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2024-0132 NVIDIA: CVE-2024-0132 Container Toolkit 1.16.1 and Earlier Time-of-check Time-of Use Vulnerability
Amazon AWS Security Advisories
 
CVE-2024-8901 - missing JWT issuer and signer validation in aws-alb-route-directive-adapter-for-istio
CVE-2024-10125 - missing JWT issuer and signer validation in aws-alb-identity-aspnetcore
Github Security Advisories
 
[GHSA-q34m-jh98-gwm2] Werkzeug possible resource exhaustion when parsing file data in forms
[GHSA-f9vj-2wh5-fj8j] Werkzeug safe_join not safe on Windows
[GHSA-7h65-4p22-39j6] github.com/crossplane/crossplane: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses
[GHSA-x7xj-jvwp-97rv] RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists
[GHSA-h99m-6755-rgwc] Rancher Remote Code Execution via Cluster/Node Drivers
[GHSA-xj7w-r753-vj8v] Exposure of vSphere's CPI and CSI credentials in Rancher
[GHSA-7h8m-pvw3-5gh4] Rancher allows privilege escalation in Windows nodes due to Insecure Access Control Lists
[GHSA-3rmw-76m6-4gjc] User Registration Bypass in Zitadel
[GHSA-6cf5-w9h3-4rqv] Denied Host Validation Bypass in Zitadel Actions
[GHSA-v46j-h43h-rwrm] Autolab Misconfigured Reset Password Permissions
[GHSA-5vvg-pvhp-hv2m] The Snowflake Connector for Python stores sensitive data in logs
[GHSA-c479-wq8g-57hr] Pterodactyl Panel has plain-text logging of user passwords when two-factor authentication is disabled
[GHSA-rjfv-pjvx-mjgv] AWS Load Balancer Controller automatically detaches externally associated web ACL from Application Load Balancers
[GHSA-qfwq-6jh6-8xx4] OpenRefine has a path traversal in LoadLanguageCommand
[GHSA-3pg4-qwc8-426r] OpenRefine leaks Google API credentials in releases
[GHSA-mpcw-3j5p-p99x] Butterfly's parseJSON, getJSON functions eval malicious input, leading to remote code execution (RCE)
[GHSA-3p8v-w8mr-m3x8] Butterfly has path/URL confusion in resource handling leading to multiple weaknesses
[GHSA-j8hp-f2mj-586g] OpenRefine's error page lacks escaping, leading to potential Cross-site Scripting on import of malicious project
[GHSA-87cf-j763-vvh8] OpenRefine's SQLite integration allows filesystem access, remote code execution (RCE)
[GHSA-79jv-5226-783f] OpenRefine has a reflected cross-site scripting vulnerability (XSS) from POST request in ExportRowsCommand
[GHSA-3jm4-c6qf-jrh3] OpenRefine's PreviewExpressionCommand, which is eval, lacks protection against cross-site request forgery (CSRF)
[GHSA-pw3x-c5vp-mfc3] OpenRefine has a reflected cross-site scripting vulnerability (XSS) in GData extension (authorized.vt)
[GHSA-qxgx-hvg3-v92w] ai-admin-graphql has a Denial of service vulnerability in SaaS and marketplace setups
[GHSA-p3m2-mj3j-j49x] baserCMS has a Cross-site Scripting (XSS) Vulnerability in Edit Email Form Settings Feature
[GHSA-66jv-qrm3-vvfg] baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts Feature
[GHSA-mr7q-fv7j-jcgv] baserCMS has a Cross-site Scripting (XSS) Vulnerability in HTTP 400 Bad Request
[GHSA-wrjc-fmfq-w3jr] baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts and Contents list Feature
[GHSA-hf59-7rwq-785m] In AshPostgres, empty, atomic, non-bulk actions, policy bypass for side-effects vulnerability.
[GHSA-m4gq-x24j-jpmf] Mermaid allows prototype pollution in bundled version of DOMPurify
[GHSA-3vpc-4p9p-47hc] curl_cffi bundles a version of libcurl affected by High Severity vulnerability
[GHSA-wxw9-6pv9-c3xc] Umbraco CMS Has Incomplete Server Termination During Explicit Sign-Out
[GHSA-5955-cwv4-h7qh] Umbraco has a Potential Code Execution Risk When Viewing SVG Files in Full Screen in Backoffice
[GHSA-fp6q-gccw-7qqm] Umbraco CMS logout page displayed before session expiration
[GHSA-4gp9-ff99-j6vj] Umbraco CMS Improper Access Control Vulnerability Allows Low-Privilege Users to Access Webhook API
[GHSA-c5g6-6xf7-qxp3] Umbraco CMS vulnerable to stored Cross-site Scripting in the "dictionary name" on Dictionary section
[GHSA-3wwx-63fv-pfq6] Cilium's CIDR deny policies may not take effect when a more narrow CIDR allow is present
[GHSA-584q-6j8j-r5pm] secp256k1-node allows private key extraction over ECDH
Spring Security Advisories
 
CVE-2024-38821 - Medium - Authorization Bypass of Static Resources in WebFlux Applications
CISA Known Exploted Vulnerabilities
 
ScienceLogic SL1 Unspecified Vulnerability CVE-2024-9537
Microsoft SharePoint Deserialization Vulnerability CVE-2024-38094
Fortinet FortiManager Missing Authentication Vulnerability CVE-2024-47575
RoundCube Webmail Cross-Site Scripting (XSS) Vulnerability CVE-2024-37383
Cisco ASA and FTD Denial-of-Service Vulnerability CVE-2024-20481

The known exploited vulnerabilities list contains vulnerabilities that are known to be activly exploited. They may not be new or recently discovered. Vulnerabilities listed here were added to this list in the past week.