Adobe | BIND | Drupal | Cisco | Microsoft

Advisory ID: 
JMCIRT-SA-2020.088 Part 1
Advisory Date: 
Friday, June 26, 2020
Advisory Description: 

Adobe Releases Security Updates for Multiple Products
Original release date: June 17, 2020

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Adobe Security Bulletins and apply the necessary updates:

 

ISC Releases Security Advisories for BIND
Original release date: June 18, 2020

The Internet Systems Consortium (ISC) has released security advisories that address vulnerabilities affecting multiple versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the ISC Security Advisories for CVE-2020-8618 and CVE-2020-8619 and apply the necessary updates.


Drupal Releases Security Updates 
Original release date: June 18, 2020

Drupal has released security updates to address vulnerabilities affecting Drupal 7, 8.8, 8.9, and 9.0. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. 

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Drupal Advisories SA-CORE-2020-004 and SA-CORE-2020-005 and apply the necessary updates.


Cisco Releases Multiple Security Updates
Original release date: June 18, 2020

Cisco has released security updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. 

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Cisco advisories for high severity vulnerabilities and apply the necessary updates:

 

Microsoft Releases Security Updates for Windows
Original release date: June 19, 2020

Microsoft has released security updates to address a vulnerability in Windows 10 version 1903. An attacker could exploit this vulnerability to overwrite or modify a protected file and gain elevated privileges.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Microsoft Security Advisory and apply the necessary updates.

 

References
1. https://www.us-cert.gov
2. https://helpx.adobe.com/security.html
3. https://kb.isc.org/docs/cve-2020-8619
4. https://kb.isc.org/docs/cve-2020-8618
5. https://www.drupal.org/sa-core-2020-004
6. https://www.drupal.org/sa-core-2020-005  
7. https://tools.cisco.com/security/center/publicationListing.x 
8. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2...