Skip to main content

Multiple vulnerabilities in J-Web can be combined to allow a preAuth Remote Code Execution. This is an out of cyle security release.

The VMware security team released VMware tools updates that address a SAML Token Signature Bypass Vulnerability. The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises all sys admins that use VMware Tools to review and implement the updates.

A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks.

The Drupal security team released an advisory that addresses the WebProfiler Cross Site Scripting vulnerability. The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises all web admins to review and implement the updates.

Adobe has released a security update for Adobe Acrobat and Reader for Windows and macOS. This update addresses a CRITICAL vulnerability. The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises all Adobe Acrobat and Reader users to review and implement the updates.

Microsoft has released sixty-three security patches across a range of its products. The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises all system admins to review and implement the updates.