Security Advisories Details

  • Home
  • Security Advisories Details
Image

SecurWires - Security Advisory

SecurWires Security Advisories are a way for SecurWires to communicate security information about issues that maybe classified as vulnerabilities, threats, security patch information, functionalities, End of Life, End of Support etc

SecurWires advisory also includes CIS advisories, NIST NVD, CERT alerts and vendor alerts. Each advisory is accompanied with a unique Base Article number for reference to provide additional information about the changes. SecurWires Security Advisories address security changes that may affect customer’s overall security. Some examples\ of topics that

security advisories discuss include the following:

  •  "Defense in Depth" security enhancements or changes that are unrelated to security vulnerabilities.
  •   Guidance and mitigations that may be applicable for publicly disclosed vulnerabilities


Security advisories contain a top-level summary which provides information and guidance about update that are available to address platform vulnerabilities that may exist in respective products.

How to Keep Safe in the connected world –

  • Keep your operating system updated and patched.
  • Use anti-virus, anti-spyware softwares and keep them updated.
  • Do not visit untrusted websites or visit links provided by unknown or untrusted sources.
  • Keep your applications updated and patched, particularly if they work with your browser, such as multimedia programs used for viewing videos.
  • Block pop-up windows, some of which may be malicious and hide attacks. This may block malicious Software from being downloaded to your computer.


 

 

US-CERT: Latest Security Updates

Sr. No.

Description of Vulnerability

Risk

  CVE

       Date

    1

Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data

  High

             -

03 Dec 2020

    2

Ransomware Activity Targeting the Healthcare and Public Health Sector

  High

             -

03 Dec 2020

    3

North Korean Advanced Persistent Threat Focus: Kimsuky

  High

             -

03 Dec 2020

    4

Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems

  High

             -

03 Dec 2020

    5

Russian State-Sponsored Advanced Persistent Threat Actor Compromises U.S. Government Targets

 High

             -

03 Dec 2020

 

 

NIST NVD: Latest Security Updates

Sr. No.

Description of Vulnerability

Risk

  CVE

       Date

   1

vulnerability in NVIDIA Web Helper NodeJS Web Server

-

CVE-2020-5977

03 Dec 2020

   2

CSV injection

-

CVE-2020-22276

03 Dec 2020

   3

 A remote execution of arbitrary commands vulnerability 

-

CVE-2020-7129

03 Dec 2020

   4

 multiple CSRF vulnerabilities within its web management portal

-

CVE-2020-27692

03 Dec 2020

   5

 unrestricted file upload issue in HorizontCMS

-

CVE-2020-27387

03 Dec 2020



 

CIS (MS-ISAC): Latest Security Updates

Sr. No.

Description of Vulnerability

Risk

  CVE

       Date

   1

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

High

-

03 Dec 2020

   2

Multiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution

High

-

03 Dec 2020

   3

Top Videoconferencing Attacks and Security Best Practices

High

-

03 Dec 2020

   4

A Vulnerability with Cisco Adaptive Security Appliance and Firepower Threat Defense Could Allow for Denial of Service

High

-

03 Dec 2020

   5

Multiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code Execution.

  High

-

03 Dec 2020

Copyright @SecurWires. Designed & Developer By MindScript