Page 16 - Threat Intelligence 10-10-2019
P. 16

Threat Alerts




           And Advisories










            Intel Releases Security Updates
            Intel has released security updates to address vulnerabilities in multiple products. An
            attacker could exploit some of these vulnerabilities to gain an escalation of privileges on a
            previously infected machine. The Cybersecurity and Infrastructure Security Agency (CISA)
            encourages users and administrators to review the following Intel advisories and apply the
            necessary updates:
                   • Active System Console Advisory INTEL-SA-00261
                   • Smart Connect Technology for Intel NUC Advisory INTEL-SA-00286
                   • NUC Advisory INTEL-SA-00296


            iTerm2 Vulnerability
            The CERT Coordination Center (CERT/CC) has released information on a vulnerability (CVE-
            2019-9535) affecting iTerm2, a macOS terminal emulator. An attacker could exploit this
            vulnerability to take control of an affected system. The Cybersecurity and Infrastructure
            Security Agency (CISA) encourages users and administrators to review CERT/CC’s
            Vulnerability Note VU#763073, Mozilla’s blog post, and iTerm2’s downloads page for patch
            information and additional details.


            Microsoft Releases October 2019 Security Updates
            Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A
            remote attacker could exploit some of these vulnerabilities to take control of an affected
            system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and
            administrators to review Microsoft’s October 2019 Security Update Summary and
            Deployment Information and apply the necessary updates.


            Apple Releases Security Updates
            Apple has released security updates to address vulnerabilities in multiple products. An
            attacker could exploit some of these vulnerabilities to take control of an affected system.
            The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and
            administrators to review the Apple security pages for the following products and apply the
            necessary updates:
                   • iCloud for Windows 7.14
                   • iCloud for Windows 10.7
                   • iTunes 12.10.1 for Windows
                   • macOS Catalina 10.15











                                                    www.accumepartners.com
                                                                                                                    16
   11   12   13   14   15   16   17   18   19   20