Insyde has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged are review Insyde Security Advisories SA-2023056, SA-2023055 and SA-2023054 and apply necessary.

Advisory No: TZCERT/SA/2023/10/27 Date of First Release: 27th October 2023 Source: VMware Software Affected:  VMware vCenter Server and VMware Cloud Foundation Overview: Two vulnerabilities affecting VMware vCenter Server and VMware Cloud Foundation have been disclosed. These vulnerabilities may lead to out-of-bounds write potentially leading to remote code execution. Description: VMware …

IBM has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review IBM Security Advisories and apply necessary updates.

Gentoo has released security updates to address vulnerabilities in usbview, ubiquiti and libinput. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Gentoo Linux Security Advisories glsa-202310-15, glsa-202310-16 and glsa-202310-14 and apply necessary updates.

Jenkins has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review Jenkins Security Advisory and apply necessary updates.

Apple has released security updates to address vulnerabilities in iOS, iPadOS, macOS, tvOS, watchOS and safari. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Apple Security Advisories HT213982, HT213981, HT213990, HT213984, HT213985, HT213983, HT213987, HT213988 and HT213986 …

Ubuntu has released security updates to address vulnerabilities in Linux kernel and vim. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Gentoo Security Advisories USN-6454-1 and USN-6452-1 and apply necessary updates.

Tenable has released security updates to address vulnerabilities in Nessus Network Monitor. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Tenable Security Advisory and apply necessary updates.

VMware has released security updates to address vulnerabilities in VMware tools. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review VMware Security Advisory and apply necessary updates.

Oracle has released security updates to address vulnerabilities in java, nginx and python. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Oracle Security Advisories ELSA-2023-5742, ELSA-2023-6120 and ELSA-2023-5998 and apply necessary updates.