US-CERT Feed

IBM Cisco Security Update

US-Cert Current Activity - Fri, 07/21/2017 - 10:02am
Original release date: July 21, 2017

IBM has released a security update to address some vulnerabilities in its IBM Cisco MDS Series Switches Data Center Network Manager (DCNM) software. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review the IBM Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Update

US-Cert Current Activity - Thu, 07/20/2017 - 12:24pm
Original release date: July 20, 2017

Cisco has released a security update to address a vulnerability in its Web Security Appliance (WSA). A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Update

US-Cert Current Activity - Thu, 07/20/2017 - 12:24pm
Original release date: July 20, 2017

Cisco has released a security update to address a vulnerability in its Web Security Appliance (WSA). A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Apple Releases Security Updates

US-Cert Current Activity - Wed, 07/19/2017 - 3:12pm
Original release date: July 19, 2017

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Apple Releases Security Updates

US-Cert Current Activity - Wed, 07/19/2017 - 3:12pm
Original release date: July 19, 2017

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Oracle Releases Security Bulletin

US-Cert Current Activity - Tue, 07/18/2017 - 4:03pm
Original release date: July 18, 2017

Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Oracle Releases Security Bulletin

US-Cert Current Activity - Tue, 07/18/2017 - 4:03pm
Original release date: July 18, 2017

Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Updates

US-Cert Current Activity - Mon, 07/17/2017 - 5:26pm
Original release date: July 17, 2017

Cisco has released security updates to address a vulnerability in its WebEx browser extension on Google Chrome and Mozilla Firefox. A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Updates

US-Cert Current Activity - Mon, 07/17/2017 - 5:26pm
Original release date: July 17, 2017

Cisco has released security updates to address a vulnerability in its WebEx browser extension on Google Chrome and Mozilla Firefox. A remote attacker could exploit this vulnerability to take control of a system.

US-CERT encourages users and administrators to review the Cisco Security Advisory for vulnerability and mitigation details.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

FBI Releases Article on Privacy Risks Associated with Internet-Connected Children's Toys

US-Cert Current Activity - Mon, 07/17/2017 - 1:37pm
Original release date: July 17, 2017

The Federal Bureau of Investigation (FBI) has released an article on the privacy risks associated with Internet-connected children's toys. FBI warns that Internet-connected toys may contain "sensors, microphones, cameras, data storage components, and other multimedia capabilities - including speech recognition and GPS options" that may put the privacy and safety of children at risk due to the disclosure of personal information. FBI recommends that consumers read user agreement disclosures and privacy practices for information on how a toy's data may be used.

Users and administrators are encouraged to review the FBI article for more information and refer to the US-CERT Tip Protecting Your Privacy.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

FBI Releases Article on Privacy Risks Associated with Internet-Connected Children's Toys

US-Cert Current Activity - Mon, 07/17/2017 - 1:37pm
Original release date: July 17, 2017

The Federal Bureau of Investigation (FBI) has released an article on the privacy risks associated with Internet-connected children's toys. FBI warns that Internet-connected toys may contain "sensors, microphones, cameras, data storage components, and other multimedia capabilities - including speech recognition and GPS options" that may put the privacy and safety of children at risk due to the disclosure of personal information. FBI recommends that consumers read user agreement disclosures and privacy practices for information on how a toy's data may be used.

Users and administrators are encouraged to review the FBI article for more information and refer to the US-CERT Tip Protecting Your Privacy.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

FTC Releases Alert on Digital Security While Traveling

US-Cert Current Activity - Fri, 07/14/2017 - 9:39pm
Original release date: July 14, 2017

The Federal Trade Commission (FTC) has released an alert on ensuring good digital security while traveling. Security recommendations include using caution while accessing free Wi-Fi hotspots, keeping all software updated, and using Virtual Private Networks (VPNs).    

US-CERT encourages users to refer to the FTC Alert and the US-CERT Tip on Cybersecurity for Electronic Devices for more information.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

FTC Releases Alert on Digital Security While Traveling

US-Cert Current Activity - Fri, 07/14/2017 - 9:39pm
Original release date: July 14, 2017

The Federal Trade Commission (FTC) has released an alert on ensuring good digital security while traveling. Security recommendations include using caution while accessing free Wi-Fi hotspots, keeping all software updated, and using Virtual Private Networks (VPNs).    

US-CERT encourages users to refer to the FTC Alert and the US-CERT Tip on Cybersecurity for Electronic Devices for more information.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Updates

US-Cert Current Activity - Thu, 07/13/2017 - 8:44pm
Original release date: July 13, 2017

Cisco has released security updates to address several Simple Network Management Protocol (SNMP) vulnerabilities in its IOS and IOS XE software. A remote attacker could exploit these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the Cisco Security Advisory and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Updates

US-Cert Current Activity - Thu, 07/13/2017 - 8:44pm
Original release date: July 13, 2017

Cisco has released security updates to address several Simple Network Management Protocol (SNMP) vulnerabilities in its IOS and IOS XE software. A remote attacker could exploit these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the Cisco Security Advisory and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Juniper Releases ScreenOS Security Update

US-Cert Current Activity - Thu, 07/13/2017 - 8:06pm
Original release date: July 13, 2017

Juniper has released ScreenOS 6.3.0r24 to address multiple cross-site scripting vulnerabilities found in prior versions. An attacker could exploit one of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Juniper’s Security Bulletin and update all affected ScreenOS versions.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Juniper Releases ScreenOS Security Update

US-Cert Current Activity - Thu, 07/13/2017 - 8:06pm
Original release date: July 13, 2017

Juniper has released ScreenOS 6.3.0r24 to address multiple cross-site scripting vulnerabilities found in prior versions. An attacker could exploit one of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Juniper’s Security Bulletin and update all affected ScreenOS versions.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Samba Releases Security Updates

US-Cert Current Activity - Wed, 07/12/2017 - 2:57pm
Original release date: July 12, 2017

The Samba Team has released security updates that address a vulnerability in all versions of Samba from 4.0.0 onward using embedded Heimdal Kerberos. A remote attacker could exploit this vulnerability to take control of an affected system.

US-CERT encourages users and administrators to review Samba's Security Announcement and apply the necessary updates, or refer to their Linux or Unix-based OS vendors for appropriate patches.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Samba Releases Security Updates

US-Cert Current Activity - Wed, 07/12/2017 - 2:57pm
Original release date: July 12, 2017

The Samba Team has released security updates that address a vulnerability in all versions of Samba from 4.0.0 onward using embedded Heimdal Kerberos. A remote attacker could exploit this vulnerability to take control of an affected system.

US-CERT encourages users and administrators to review Samba's Security Announcement and apply the necessary updates, or refer to their Linux or Unix-based OS vendors for appropriate patches.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Microsoft Releases July 2017 Security Updates

US-Cert Current Activity - Tue, 07/11/2017 - 1:38pm
Original release date: July 11, 2017

Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of a system.

US-CERT encourages users and administrators to review Microsoft's July 2017 Security Update Summary and Deployment Information and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Pages