Xerox | Mozilla | Apple | VMware | Google

Advisory ID: 
JMCIRT-SA-2020.176
Advisory Date: 
Friday, December 4, 2020
Advisory Description: 

 

Xerox Releases Security Updates for DocuShare
Original release date: December 2, 2020

Xerox has released security updates for DocuShare 6.6.1, 7.0, and 7.5 to address a vulnerability that could allow an unauthenticated attacker to obtain sensitive information.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Xerox Bulletin and apply the necessary updates.

Mozilla Releases Security Update for Thunderbird
Original release date: December 2, 2020

Mozilla has released a security update to address a vulnerability in Thunderbird. An attacker could exploit this vulnerability to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Mozilla Security Advisory and apply the necessary updates.


Apple Releases Security Updates for iCloud for Windows
Original release date: December 3, 2020

Apple has released security updates to address vulnerabilities in iCloud for Windows. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Apple Security page and apply the necessary updates.


VMware Releases Security Updates to Address CVE-2020-4006
Original release date: December 3, 2020

VMware has released security updates to address a vulnerability—CVE-2020-4006—in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. An attacker could exploit this vulnerability to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the VMware Security Advisory and apply the necessary updates.


Google Releases Security Updates for Chrome
Original release date: December 4, 2020

Google has released Chrome version 87.0.4280.88 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Chrome Release and apply the necessary updates.

 

References
1. https://www.us-cert.gov
2. https://securitydocs.business.xerox.com/wp-content/uploads/2020/11/cert_...
3. https://www.mozilla.org/en-US/security/advisories/mfsa2020-53/
4. https://support.apple.com/en-us/HT211935
5. https://www.vmware.com/security/advisories/VMSA-2020-0027.html 
6. https://chromereleases.googleblog.com/2020/12/stable-channel-update-for-...