Cisco has announced multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition.
Microsoft Monthly Security Update – 2021 Mar 10th
Microsoft have released a security advisory on the 09th of March 2021 in line with their regular monthly patch schedule which includes a number of updates to address critical vulnerabilities.
Adobe Monthly Security Update – 2021 Mar 10th
Adobe have released security updates on the 09th of March 2021, 3 rated as medium risk.
Microsoft Security Advisory (HAFNIUM) – 2021 Mar 3rd
Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to email accounts, and allowed installation of additional malware to facilitate long-term access to victim environments.
VMware Security Advisory – 2021 Feb 24th
Multiple vulnerabilities were identified in VMware products, a malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue in OpenSLP service resulting in remote code execution.