WordPress | Adobe | Oracle | VMware | Cisco

Advisory ID: 
JMCIRT-SA-2019.150
Advisory Date: 
Friday, October 18, 2019
Advisory Description: 

 

WordPress Releases Security Update

Original release date: October 15, 2019

WordPress 5.2.3 and prior versions are affected by multiple vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected website.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the WordPress Security Release page and apply the necessary updates.

Adobe Releases Security Updates for Multiple Products

Original release date: October 15, 2019

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Adobe Security Bulletins and apply the necessary updates:
Experience Manager, Acrobat and Reader, Experience Manager Forms, Download Manager

Oracle Releases October 2019 Security Bulletin

Original release date: October 15, 2019

Oracle has released its Critical Patch Update for October 2019 to address 219 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Oracle October 2019 Critical Update and apply the necessary updates.

VMware Releases Security Update for Harbor Container Registry for PCF

Original release date: October 16, 2019

VMware has released a security update to address a vulnerability affecting Harbor Container Registry for Pivotal Cloud Foundry (PCF). An attacker could exploit this vulnerability to take control of an affected system.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the VMware Security Advisory and apply the necessary updates.

Cisco Releases Security Updates

Original release date: October 17, 2019

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Cisco advisories and apply the necessary updates:
 Aironet Access Points
 Wireless LAN Controller Secure Shell
 SPA100 Series Analog Telephone Adapters
 Small Business Smart and Managed Switches
 Aironet Access Points Point-to-Point Tunnelling Protocol
 Aironet Access Points and Catalyst 9100 Access Points CAPWAP

Reference 

US-CERT

WordPress

Adobe

Oracle

VMWARE

CISCO