The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises all users to review the security advisory.
Cisco published an update that the public exploit code exists for CVE-2020-350 and further notes that the vulnerability is being actively exploited. This affects Cisco products running vulnerable releases of Cisco ASA Software or FTD Software with a vulnerable AnyConnect or WebVPN configuration.
Google published an urgent security update that addresses 14 vulnerabilities for the Chrome browser. The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises all users and Systems Admins to immediately update to the latest version 91.0.4472.101.
Microsoft released security updates that address various vulnerabilities for a range of its impacted products. Six of the vulnerabilities are already under exploit.
The Adobe security team published security updates for various products including Adobe Acrobat and reader. These updates fix multiple vulnerabilities within the affected Adobe products.
Microsoft released a security update to fix the XSS vulnerability in the SSH Terminal page related vulnerability. Systems Admins should upgrade to Nagios XI 5.8.0 or above in order to avoid infrastructure compromise.