{"id":8743,"date":"2020-12-28T12:35:45","date_gmt":"2020-12-28T19:35:45","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?post_type=patch_watch&#038;p=8743"},"modified":"2023-03-07T15:56:42","modified_gmt":"2023-03-07T22:56:42","slug":"dec-10-patch-watch-security-updates","status":"publish","type":"patch_watch","link":"https:\/\/10.42.32.162\/patch_watch\/dec-10-patch-watch-security-updates\/","title":{"rendered":"Dec 10: Patch Watch &#038; Security Updates"},"content":{"rendered":"<h2><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Highlights of Patch Watch Issue 8<\/span><\/span><\/h2>\n<ul>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">19 vendors including Apple, Cisco, Adobe, Chrome, Mozilla, IBM, Microsoft, Checkpoint, RedHat, and others, have released patches and updates for 317 vulnerabilities.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Microsoft has released updates for 58 vulnerabilities.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">14 vulnerabilities are weaponized with known exploits.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">CISA issued a security alert for 25 vulnerabilities.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">74 old vulnerabilities are patched.<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 800px; height: 417px;\" src=\"\/wp-content\/uploads\/2022\/10\/patchwatch-highlights8-11-1.png\" alt=\"\" \/><\/p>\n<ol>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\"><a id=\"Findings\" name=\"Findings\"><\/a>Here is our analysis of 317 vulnerabilities that were patched last week.<\/span><\/span><\/p>\n<\/li>\n<\/ol>\n<ul style=\"margin-left: 40px;\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">3 CVEs are associated with RYUK, BitPaymer, and CLOP Ransomware.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">2 CVEs are correlated with Mercury and MuddyWater APT Groups.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">14 CVEs have publicly known exploits.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">303 CVEs are yet to be weaponized.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Vulnerabilities that had known exploits are associated with \u00a0Denial of Service and Webapps exploits.<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 600px; height: 427px;\" src=\"\/wp-content\/uploads\/2022\/10\/our-findingspw_8-1.png\" alt=\"\" \/><\/p>\n<ol start=\"2\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\"><a id=\"Microsoft\" name=\"Microsoft\"><\/a>Microsoft has released a smaller number of patches for December.<\/span><\/span><\/p>\n<\/li>\n<\/ol>\n<ul style=\"margin-left: 40px;\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">22 CVEs are Remote Code Execution bugs.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Of these, 9 CVEs are critical, 46 are high, and 3 are rated medium.<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 800px; height: 570px;\" src=\"\/wp-content\/uploads\/2022\/10\/microsoft-december-patchespw_8-1.png\" alt=\"\" \/><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">These RCE bugs are advised to be prioritized for fixes as they are easily exploitable without user interaction.<\/span><\/span><\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shrcatN2pTQED6qvm?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 14px;\"><strong><span style=\"font-family: verdana,geneva,sans-serif;\">Table 1: Microsoft Patches<\/span><\/strong><\/span><\/p>\n<ol start=\"3\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\"><a id=\"weaponized\" name=\"weaponized\"><\/a>14 vulnerabilities are weaponized.<\/span><\/span><\/p>\n<\/li>\n<\/ol>\n<ul style=\"margin-left: 40px;\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Out of these, 3 CVEs are rated critical, 2 are high, and 7 are medium severity.<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">3 CVEs are associated with Denial of Service<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">11 CVEs are linked with Web App exploits.<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<p dir=\"ltr\"><img decoding=\"async\" class=\"aligncenter\" style=\"width: 600px; height: 427px;\" src=\"\/wp-content\/uploads\/2022\/10\/weaponized-vulnerabilitiespw_8-1.png\" alt=\"\" \/><\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shrzBvv8SBbKKfwMn?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 14px;\"><strong><span style=\"font-family: verdana,geneva,sans-serif;\">Table 2: Weaponized Vulnerabilities<\/span><\/strong><\/span><\/p>\n<ol start=\"4\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\"><a id=\"CISA\" name=\"CISA\"><\/a>CISA has issued security alerts for 25 vulnerabilities.<\/span><\/span><\/p>\n<\/li>\n<\/ol>\n<ul style=\"margin-left: 40px;\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">3 CVEs are rated high and 12 are of medium.\u00a0<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 600px; height: 427px;\" src=\"\/wp-content\/uploads\/2022\/10\/cisa-alerts-2pw_8.png\" alt=\"\" \/><\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shr0yxGw90DzelKBV?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 14px;\"><strong><span style=\"font-family: verdana,geneva,sans-serif;\">Table 3: CISA Alerts<\/span><\/strong><\/span><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Prioritizing the vulnerability using risk-based analysis improves the cybersecurity posture. Therefore, it is important to fix these vulnerabilities first.<\/span><\/span><\/p>\n<ol start=\"5\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\"><a id=\"Old CVE\" name=\"Old CVE\"><\/a>74 old vulnerabilities have been patched, ranging from the year 2015 to 2019.<\/span><\/span><\/p>\n<\/li>\n<\/ol>\n<ul style=\"margin-left: 40px;\">\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">CVE-2019-8720 and CVE-2019-8625 are associated with the BitPaymer ransomware.2 CVEs are critical, 11 are high and 65 are rated medium.\u00a0<\/span><\/span><\/p>\n<\/li>\n<li dir=\"ltr\">\n<p dir=\"ltr\" role=\"presentation\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">Of these, 7 CVEs are weaponized.<\/span><\/span><\/p>\n<\/li>\n<\/ul>\n<p><img decoding=\"async\" class=\"aligncenter\" style=\"width: 600px; height: 427px;\" src=\"\/wp-content\/uploads\/2022\/10\/old-vulnerabilitiespw_8.png\" alt=\"\" \/><\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shrh9HLkUjJocbmyQ?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 14px;\"><strong><span style=\"font-family: verdana,geneva,sans-serif;\">Table 4: Old Vulnerabilities<\/span><\/strong><\/span><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 16px;\"><span style=\"font-family: verdana,geneva,sans-serif;\">According to the 2020 survey, 16 billion records have been exposed in the dark web.\u00a0 Cybercriminals are constantly discovering enticing targets to deploy major data hacks. Therefore, it is essential to protect your sensitive data by strengthening your attack surface.\u00a0<\/span><\/span><\/p>\n<p><iframe class=\"airtable-embed\" style=\"background: transparent; border: 1px solid #ccc;\" src=\"https:\/\/airtable.com\/embed\/shr4cLOVgKMIMDGIR?backgroundColor=purple&amp;viewControls=on\" width=\"100%\" height=\"533\" frameborder=\"0\"><\/iframe><\/p>\n<p dir=\"ltr\"><span style=\"font-size: 14px;\"><strong><span style=\"font-family: verdana,geneva,sans-serif;\">Table 5: Vulnerabilities yet to be Weaponized<\/span><\/strong><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Highlights of Patch Watch Issue 8 19 vendors including Apple, Cisco, Adobe, Chrome, Mozilla, IBM, Microsoft, Checkpoint, RedHat, and others, have released patches and updates for 317 vulnerabilities. Microsoft has released updates for 58 vulnerabilities. 14 vulnerabilities are weaponized with known exploits. CISA issued a security alert for 25 vulnerabilities. 74 old vulnerabilities are patched. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":14453,"parent":0,"menu_order":0,"template":"","meta":{"content-type":""},"patch_category":[],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/patch_watch\/8743"}],"collection":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/patch_watch"}],"about":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/types\/patch_watch"}],"author":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/users\/1"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media\/14453"}],"wp:attachment":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media?parent=8743"}],"wp:term":[{"taxonomy":"patch_category","embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/patch_category?post=8743"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}