Security Advisories Notices Update on 2022-10-25

Table of Contents

Jenkins Security Advisories
Oracle Security Alerts
Adobe Security Bulletins and Advisories
Apple Security Advisory
National Cyber Awareness System
Mozilla Security Advisories
Ubuntu Security Notices
Red Hat Security Advisory
Cisco Security Advisory
Microsoft Security
Google Security Advisories
Github Security Advisories
CISA Known Exploted Vulnerabilities

Jenkins Security Advisories

Jenkins Security Advisory 2022-10-19

Oracle Security Alerts

Oracle Critical Patch Update Advisory – October 2022

Adobe Security Bulletins and Advisories

Security Updates Available for Adobe Animate | APSB21-21 APSB22-57
Security update available for Adobe Acrobat and Reader | APSB21-09 APSB22-46
Security updates available for Adobe ColdFusion | APSB22-44

Apple Security Advisory

iOS 16.0.3 Security Content

National Cyber Awareness System

#StopRansomware: Daixin Team
Cisco Releases Security Update for Cisco Identity Services Engine
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Releases Three Industrial Control Systems Advisories
Mozilla Releases Security Updates for Firefox
CISA Requests for Comment on Microsoft 365 Security Configuration Baselines
CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
Oracle Releases October 2022 Critical Patch Update
CISA Releases Two Industrial Control Systems Advisories
CISA Releases RedEye: Red Team Campaign Visualization and Reporting Tool
CISA Releases Twenty-Five Industrial Control Systems Advisories
Adobe Releases Security Updates for Multiple Products
Microsoft Releases October 2022 Security Updates
CISA Has Added One Known Exploited Vulnerability to Catalog
FBI and CISA Publish a PSA on Information Manipulation Tactics for 2022 Midterm Elections
Top CVEs Actively Exploited by People’s Republic of China State-Sponsored Cyber Actors
Cisco Releases Security Updates for Multiple Products
CISA Releases Two Industrial Control Systems Advisories
FBI and CISA Publish a PSA on Malicious Cyber Activity Against Election Infrastructure
Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization
CISA Releases Five Industrial Control Systems Advisories
CISA Issues Binding Operational Directive 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks
Drupal Releases Security Update
Microsoft Releases Guidance on Zero-Day Vulnerabilities in Microsoft Exchange Server
Cisco Releases Security Updates for Multiple Products
Mozilla Releases Security Update for Thunderbird
Hurricane-Related Scams
CISA Adds Three Known Exploited Vulnerabilities to Catalog
VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere
CISA Releases Six Industrial Control Systems Advisories
CISA Publishes User Guide to Prepare for Nov. 1 Move to TLP 2.0
CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
CISA Releases Three Industrial Control Systems Advisories

Mozilla Security Advisories

Security Vulnerabilities fixed in Firefox ESR 102.4 mfsa2022-45
Security Vulnerabilities fixed in Firefox 106 mfsa2022-44
Security Vulnerabilities fixed in Thunderbird 102.3.1 mfsa2022-43

Ubuntu Security Notices

Red Hat Security Advisory

Cisco Security Advisory

Microsoft Security

Google Security Advisories

Pixel Update Bulletin—October 2022 | Android Open Source Project
Android Automotive OS Update Bulletin—October 2022 | Android Open Source Project
Android Security Bulletin—October 2022 | Android Open Source Project
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop
Chrome Releases: Stable Channel Update for Desktop

Github Security Advisories

[GHSA-485p-mrj5-8w2v] .NET Denial of Service Vulnerability
[GHSA-cw98-9j8w-wxv9] .NET Denial of Service Vulnerability
[GHSA-x459-p2rx-f8ff] .NET Denial of Service Vulnerability
[GHSA-vgwq-hfqc-58wv] .NET Core Information Disclosure Vulnerability
[GHSA-whpx-q3rq-w8jc] Hardening of TypedArrays with non-canonical numeric property names in SES
[GHSA-3r7j-8mqh-6qhx] Jadx-gui vulnerable to swing HTML Denial of Service (DoS) attack
[GHSA-5jp2-vwrj-99rf] Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution
[GHSA-f9qj-7gh3-mhj4] run-terraform allows for RCE via terraform plan
[GHSA-f4p5-x4vc-mh4v] Improper use of metav1.Duration allows for Denial of Service
[GHSA-c6w8-7mp3-34j9] .NET Remote Code Execution Vulnerability
[GHSA-c27j-76xg-6x4f] Kirby CMS vulnerable to user enumeration in the brute force protection
[GHSA-43qq-qw4x-28f8] Kirby CMS vulnerable to user enumeration in the code-based login and password reset forms
[GHSA-mxrx-fg8p-5p5j] Bifrost vulnerable to authentication check flaw that leads to authentication bypass
[GHSA-4vf4-955g-vxp2] OroCommerce Cross site scripting vulnerability during shipping rule editing for UPS integration
[GHSA-2qc6-mcvw-92cw] Update bundled libxml2 to v2.10.3 to resolve multiple CVEs
[GHSA-q4qq-jhjv-7rh2] MySQL JDBC deserialization vulnerability
[GHSA-j92c-mmf7-j5x5] Potential inter-blockchain communication (IBC) protocol compromise via “Dragonberry” vulnerability in cheqd
[GHSA-6mhr-52mv-6v6f] Field-level access-control bypass for multiselect field
[GHSA-h423-w6qv-2wj3] parse-server crashes when receiving file download request with invalid byte range
[GHSA-qj6r-fhrc-jj5r] Remote denial of service in Hyperledger Fabric Gateway
[GHSA-x4q7-m6fp-4v9v] October CMS Safe Mode bypass leads to authenticated Remote Code Execution
[GHSA-5p8w-2mvw-38pv] Signature bypass via multiple root elements
[GHSA-m974-647v-whv7] Signature bypass via multiple root elements
[GHSA-4m5p-5w5w-3jcf] com.enonic.xp:lib-auth vulnerable to Session Fixation
[GHSA-jc69-hjw2-fm86] com.amazon.redshift:redshift-jdbc42 vulnerable to remote command execution
[GHSA-2p3c-p3qw-69r4] The graphql-upload library included in Apollo Server 2 is vulnerable to CSRF mutations
[GHSA-g3q9-xf95-8hp5] NuGet Elevation of Privilege Vulnerability
[GHSA-7fj2-rrq6-rphq] melisplatform/melis-asset-manager vulnerable to Path Traversal
[GHSA-m3m3-6gww-7gj9] melisplatform/melis-cms vulnerable to deserialization of untrusted data
[GHSA-h479-2mv4-5c26] melisplatform/melis-front vulnerable to deserialization of untrusted data
[GHSA-9pgh-qqpf-7wqj] Improperly Controlled Modification of Object Prototype Attributes (‘Prototype Pollution’) in @xmldom/xmldom and xmldom
[GHSA-j4j9-7hg9-97g6] Poetry vulnerable to Untrusted Search Path leading to Local Code Execution on Windows
[GHSA-455w-c45v-86rg] fastify vulnerable to denial of service via malicious Content-Type
[GHSA-c6hx-pjc3-7fqr] Traefik HTTP/2 connections management could cause a denial of service
[GHSA-4mjx-2gh5-ph8h] Exposure of sensitive Slack webhook URLs in debug logs and traces
[GHSA-jjmg-x456-w976] Incorrect default cookie name and recommendation
[GHSA-pj2c-h76w-vv6f] tiny-csrf has openly visible CSRF tokens
[GHSA-p75c-5x3h-cxcg] Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint
[GHSA-xrx9-gj26-5wx9] v8n vulnerable to Inefficient Regular Expression Complexity
[GHSA-8r99-h8j2-rw64] Twisted vulnerable to HTTP Request Smuggling Attacks
[GHSA-x279-68rr-jp4p] Blst vulnerable to incorrect results for some inputs in blst_fp_eucl_inverse function
[GHSA-p658-8693-mhvg] Tendermint Core vulnerable to Uncontrolled Resource Consumption
[GHSA-9jjw-hf72-3mxw] TensorFlow vulnerable to heap out of bounds read in filesystem glob matching
[GHSA-4xqx-pqpj-9fqw] gajira-create GitHub action vulnerable to arbitrary code execution
[GHSA-9gp7-6833-wv89] etcd having a negative value for cluster node size results in an index out-of-bound panic during service discovery
[GHSA-528j-9r78-wffx] etcd user credentials are stored in WAL logs in plaintext
[GHSA-4993-m7g5-r9hh] etcd has no minimum password length
[GHSA-h8g9-6gvh-5mrc] etcd vulnerable to TOCTOU of gateway endpoint authentication
[GHSA-m332-53r6-2w93] etcd’s WAL `ReadAll` method vulnerable to an entry with large index causing panic
[GHSA-8w7w-67mw-r5p7] generator-jhipster vulnerable to login check Regular Expression Denial of Service
[GHSA-398j-f7m7-795j] PHPMailer vulnerable to email header injection
[GHSA-745p-r637-7vvp] Codeigniter4’s Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued
[GHSA-m5m3-46gj-wch8] SIF’s Digital Signature Hash Algorithms Not Validated
[GHSA-px9g-8hgv-jvg2] kamadak-exif vulnerable to Infinite loop when parsing PNG files
[GHSA-67×4-qr35-qvrm] FlyteAdmin’s Default OAuth Authorization Server secret must be rotated
[GHSA-h4h5-3hr4-j3g2] protobuf-java has a potential Denial of Service issue
[GHSA-mgvv-5mxp-xq67] SQLite3 addresses vulnerability in packaged version of libsqlite
[GHSA-vh7g-p26c-j2cw] Dex vulnerable to Man-in-the-Middle allowing ID token capture via intercepted authorization code
[GHSA-9rpw-2h95-666c] Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package
[GHSA-2jjq-x548-rhpv] isolated-vm has vulnerable CachedDataOptions in API
[GHSA-w4pr-4vjg-hffh] When matrix-nio receives forwarded room keys, the receiver doesn’t check if it requested the key from the forwarder
[GHSA-vp68-2wrm-69qm] matrix-sdk-crypto contains potential impersonation via room key forward responses
[GHSA-5w8r-8pgj-5jmf] matrix-js-sdk subject to user impersonation due to key/device identifier confusion in SAS verification
[GHSA-4rxr-27mm-mxq9] Upstash Adapter missing token verification
[GHSA-52m2-vc4m-jj33] Twig may load a template outside a configured directory when using the filesystem loader
[GHSA-gfhp-jgp6-838j] Orckestra C1 CMS’s deserialization of untrusted data allows for arbitrary code execution.
[GHSA-f36p-42jv-8rh2] Lithium vulnerable to Cross Site Scripting in provided Swagger-UI
[GHSA-fpgf-pjjv-2qgm] matrix-android-sdk2 vulnerable to Olm/Megolm protocol confusion
[GHSA-2pvj-p485-cp3m] matrix-android-sdk2 vulnerable to impersonation via forwarded Megolm sessions
[GHSA-cxgf-v2p8-7ph7] NuProcess vulnerable to command-line injection through insertion of NUL character(s)
[GHSA-r48r-j8fx-mq2c] matrix-js-sdk subject to user spoofing via Olm/Megolm protocol confusion
[GHSA-6263-x97c-c4gg] matrix-js-sdk subject to impersonated messages due to permissive key forwarding
[GHSA-hvv8-5v86-r45x] Improper beacon events in matrix-js-sdk can result in availability issues
[GHSA-mrgp-mrhc-5jrq] vm2 vulnerable to Sandbox Escape resulting in Remote Code Execution on host
[GHSA-p6fh-xc6r-g5hw] Brokercap Bifrost subject to authentication bypass when using HTTP basic authentication
[GHSA-8fg9-p83m-x5pq] ReDoS issue in dparse

CISA Known Exploted Vulnerabilities

Zimbra Collaboration (ZCS) Arbitrary File Upload Vulnerability CVE-2022-41352
Linux Kernel Privilege Escalation Vulnerability CVE-2021-3493
Fortinet Multiple Products Authentication Bypass Vulnerability CVE-2022-40684
Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability CVE-2022-41033
Microsoft Exchange Server Remote Code Execution Vulnerability CVE-2022-41082
Microsoft Exchange Server Server-Side Request Forgery Vulnerability CVE-2022-41040
Atlassian Bitbucket Server and Data Center Command Injection Vulnerability CVE-2022-36804