Product Alert - Cornerstone.IT

A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine’s VMX process running on the host. On ESXi, the exploitation is contained within the VMX sandbox.

An attacker could host a specially crafted website designed to exploit the vulnerability through Microsoft Edge and then convince a user to view the website.

NetScaler ADC and NetScaler Gateway ‘sensitive information disclosure’ & DDoS vulnerability

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway has been discovered as an exploitable target of malicious attack.

End-of-the-month Security Alerts for September 2023

Here are newly identified product-alerts and cyber-security highlights for the last week of September: 1. Google Chrome Zero-Day Vulnerability; 2. Microsoft Internet Connection Sharing (ICS) Remote Code Execution Vulnerability; 3. Cisco Catalyst SD-WAN Manager Vulnerabilities

Cisco Security Advisory for Multiple Products

Cisco published two alerts for the following products. Please follow the steps to remediate them. For assistance, contact Patrick Boyd, Director of Operations by email, Patrick.Boyd@Cornerstone.IT or by phone at 646-530-8930

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Category: Product Alert

NetScaler ADC and NetScaler Gateway ‘sensitive information disclosure’ & DDoS vulnerability

End-of-the-month Security Alerts for September 2023

Cisco Security Advisory for Multiple Products

Services

Partners

Company

The Corner View

CISCO IOS and IOS XE Software Vulnerabilities

Google Chrome (Desktop) Multiple Security Vulnerabilities

Mozilla Firefox Desktop – Critical Security Vulnerabilities

Microsoft ODBC Driver Remote Code Execution Vulnerability (CVE-2024-26162)

VMWare ESXi 7.0 and 8.0 Multiple Vulnerabilities

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability (CVE-2024-26192)

Critical Connectwise ScreenConnect Vulnerabilities (CVE-2024-1709 & CVE-2024-1708)

More Posts →