Security Advisory

Overview   Cisco(https://www.cisco.com) has released a security update that fixes vulnerabilities in products. Users of affected systems are advised to update to the latest version.   Affected Products   Cisco BroadWorks Cisco Business Wireless Access Point Software Cisco Identity Services Engine Software Cisco TelePresence Management Suite (TMS) Cisco ThousandEyes Recorder

Overview   Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products. Users of affected products are advised to update to the latest version.   Affected Products     Azure family Azure Storage Mover Agent Microsoft Identity Model v5.0.0 Microsoft Identity Model v5.0.0 for Nuget Microsoft Identity Model v6.0.0

Overview   Siemens(https://www.siemens.com) has released a security update that fixes vulnerabilities in products. Users of affected products are advised to update to the latest version.   Affected Products   JT2Go below V14.3.0.6 SIMATIC CN 4100 Versions below V2.7 SIMATIC IPC1047E All versions with maxView Storage Manager < V4.14.00.26068 on Windows

Overview   Adobe(https://adobe.com) has released a security update that fixes vulnerabilities in its products. Users of affected systems are advised to update to the latest version.   Affected Products   Adobe Substance 3D Stager 2.1.3 and earlier versions   Resolved Vulnerabilities   Memory leak due to an out-of-bounds read in

Overview   Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products. Users of affected products are advised to update to the latest version.   Affected Products     Azure family Azure Storage Mover Agent Microsoft Identity Model v5.0.0 Microsoft Identity Model v5.0.0 for Nuget Microsoft Identity Model v6.0.0

Overview An update has been made available to address an arbitrary code execution vulnerability in the Perl module used by Spreadsheet::ParseExcel(https://github.com/jmcnamara/spreadsheet-parseexcel) when parsing Excel files. Users of affected versions are advised to update to the latest version.     Affected Products Spreadsheet::ParseExcel 0.65 and earlier versions   Resolved Vulnerabilities Arbitrary

Overview An update has been made available to address a UAF vulnerability in the Linux kernel Netfilter. Users of affected versions are advised to update to the latest version.     Affected Products Linux kernel versions earlier than 6.4   Resolved Vulnerabilities UAF vulnerability in Linux kernel Netfilter (CVE-2023-3390)  

Overview An update has been made available to fix vulnerabilities in OpenSSH(https://www.openssh.com/). Users of affected products are advised to update to the latest version.   Affected Products OpenSSH versions earlier than 9.6   Resolved Vulnerabilities Terrapin attack exploiting a flaw in the initial key exchange phase of OpenSSH (CVE-2023-48795)  

Overview   Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products it has supplied. Users of affected products are advised to update to the latest version.   Affected Products   Microsoft Edge (Chromium-based) before 120.0.2210.121    Resolved Vulnerabilities   UAF Vulnerability in the ANGLE function in Microsoft Edge