Government of the Republic of Trinidad and Tobago
gov.tt

Securing the Nation's Digital Infrastructure

TTCSIRT-378.11.17.20: TT-CSIRT ADVISORY – Cisco Releases Security Updates for Security Manager

Cisco has released security updates to address vulnerabilities in Cisco Security Manager. A remote attacker could exploit these vulnerabilities to obtain sensitive information. It is encouraged that users and administrators, review the following Cisco Security Advisories and apply the necessary updates. Cisco Security Manager Path Traversal Vulnerability cisco-sa-csm-path-trav-NgeRnqgR Cisco Security Manager Static Credential Vulnerability cisco-sa-csm-rce-8gjUz

TTCSIRT-377.11.16.20: TT-CSIRT ADVISORY – Cisco Releases Security Update for IOS XR Software

Cisco has released a security update to address a vulnerability in IOS XR Software for ASR 9000 Series Aggregation Services Routers. An unauthenticated, remote attacker could exploit this vulnerability to cause a denial-of-service condition. It is encouraged that users and administrators, review and apply the necessary update. Fur further information and support, please visit the link below:Cisco security …

TTCSIRT-376.11.16.20: TT-CSIRT ADVISORY – Adobe Releases Security Updates

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. It is encouraged that users and administrators, review the Adobe security advisories and apply the necessary updates. For advisory information and updates, please visit the links below:Adobe ConnectAdobe Reader for …

TTCSIRT-375.11.16.20: TT-CSIRT ADVISORY – Google Releases Security Updates for Chrome

Google has released Chrome version 86.0.4240.198 for Windows, Mac, and Linux. This version addresses CVE-2020-16013 and CVE-2020-16017. An attacker could exploit one of these vulnerabilities to take control of an affected system. These vulnerabilities have been detected in exploits in the wild. It is encouraged that users and administrators, review the following resources and apply the necessary …

TTCSIRT-374.11.16.20: TT-CSIRT ADVISORY – Apple Releases Security Updates

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. Some of these vulnerabilities have been detected in exploits in the wild. It is encouraged that users and administrators, review the Apple security pages and apply the necessary updates. For further …

TTCSIRT-373.11.03.20: TT-CSIRT ADVISORY – Google Security Updates for Chrome

Google has released Chrome version 86.0.4240.183 for Windows, Mac, and Linux addressing multiple vulnerabilities, including vulnerability CVE-2020-16009. Exploit code for this vulnerability exists in the wild. TTCSIRT encourages users and administrators to review and apply the necessary updates immediately. For further information and support, please visit the link below:Chrome Release Note

TTCSIRT-372.10.22.20: TT-CSIRT ADVISORY – Mozilla Releases Security Updates

Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. TTCSIRT encourages users and administrators to review the Mozilla Security Advisories for Firefox 82, Firefox ESR 78.4, and Thunderbird 78.4 and apply the necessary updates.

TTCSIRT-371.10.22.20: TT-CSIRT ADVISORY – Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. TTCSIRT encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Illustrator: APSB20-53 Dreamweaver: APSB20-55 Marketo: APSB20-60 Animate: APSB20-61 After Effects: APSB20-62 Photoshop: …

TTCSIRT-370.10.22.20: TT-CSIRT ADVISORY – Google Security Updates for Chrome

Google has released Chrome version 86.0.4240.111 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. TTCSIRT encourages users and administrators to review  and apply the necessary changes. For further information and support, please visit the link below:Chrome Release

TTCSIRT-369.10.14.20: TT-CSIRT ADVISORY – Microsoft Addresses Windows TCP/IP RCE/DoS Vulnerability

Microsoft has released a security update to address a protocol vulnerability—CVE-2020-16898—in Windows Transmission Control Protocol (TCP)/IP stack handling of Internet Control Message Protocol version 6 (ICMPv6) Router Advertisement packets. A remote attacker could exploit this vulnerability to take control of an affected system or cause a denial-of-service condition. Administrators are encouraged to review and apply the …