Security Notices

• F5 BIG-IP Next Central Manager Could Allow for Remote Code Execution – PATCH: NOW – TLP: CLEAR (5/9/2024) - TLP:CLEAR MS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-048 DATE(S) ISSUED: 05/09/2024 SUBJECT: A Vulnerability in F5 BIG-IP Next Central Manager Could Allow for Remote Code…
• Mozilla PDF.js Could Allow for Arbitrary Code Execution – PATCH NOW – TLP: CLEAR (5/8/2024) - TLP: WHITE MS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-046 DATE(S) ISSUED: 05/07/2024 SUBJECT: A Vulnerability in Mozilla PDF.js Could Allow for Arbitrary Code Execution OVERVIEW:…
• Google Chrome Could Allow for Arbitrary Code Execution – PATCH NOW – TLP: CLEAR (5/8/2024) - TLP: CLEAR MS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-047 DATE(S) ISSUED: 05/07/2024 SUBJECT: Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution OVERVIEW:…
• NYSIC CAU Cyber Intelligence Bulletin: (TLP: CLEAR) Increased Potential for Cyber Attacks Amidst International Conflicts (5/3/2024) - TLP: CLEAR Recipients can spread this to the world, there is no limit on disclosure. Sources may use TLP:CLEAR when information carries minimal or no foreseeable risk…
• Google Chrome Could Allow for Arbitrary Code Execution – PATCH NOW – TLP: CLEAR (5/1/2024) - TLP: CLEAR MS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-044 DATE(S) ISSUED: 04/30/2024 SUBJECT: Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution OVERVIEW:…
• Ivanti Avalanche Could Allow for Remote Code Execution – PATCH: NOW – TLP: CLEAR (4/17/2024) - [ Please advise if this mobile device management system is in use and if so take prompt action in response. – Robert ] TLP:CLEAR MS-ISAC…
• Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS CVE-2024-3400 – TLP: CLEAR (4/12/2024) - [ To reiterate, not an issue for those running PAN-OS 10.1.X, but if other take immediate action in response. – Robert ]   TLP: CLEAR…
• Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS CVE-2024-3400 – TLP: CLEAR (4/12/2024) - Palo Alto Networks has released PAN-OS updates to mitigate this vulnerability. Those operating PAN-OS 10.2, 11.0 and 11.1 must review the updated advisory and take…
• NYSIC CAU Threat Report: (TLP: CLEAR) Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094 (3/29/2024) - TLP: CLEAR Recipients can spread this to the world, there is no limit on disclosure. Sources may use TLP:CLEAR when information carries minimal or no…
• Multiple Apple Products Could Allow for Arbitrary Code Execution – PATCH NOW – TLP: CLEAR (3/26/2024) - TLP:CLEAR MS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-031 DATE(S) ISSUED: 03/26/2024 SUBJECT: A Vulnerability in Multiple Apple Products Could Allow for Arbitrary Code Execution. OVERVIEW:…