Red Hat has released security updates to address vulnerabilities in Red Hat OpenShift Service Mesh. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Red Hat Security Advisories RHSA-2021:3272 and RHSA-2021:3273 and apply necessary updates.

VMware has released security updates to address vulnerabilities in VMware vRealize Operations, VMware Cloud Foundation and vRealize Suite Lifecycle Manager. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review VMware Security Advisory and apply necessary updates.

Ubuntu has released security update to address vulnerabilities in openssl. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Ubuntu Security Advisory and apply necessary updates.

Oracle has released security updates to address a vulnerability in libsndfile. Exploitation of this vulnerability may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Linux Security Advisory and apply necessary updates.

Hewlett Packard has released security updates to address vulnerabilities in HPE Aruba FlexNetworking, Flexfabric, Aruba AirWave Management Platform and MSR switches and routers. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review HP Security Advisory HPESBNW04161 and HPESBNW04188 and apply necessary …

Debian has released security update to address vulnerabilities in openssl. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Debian Security Advisory and apply necessary updates.

F5 has released security update to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review F5 Security Advisories K04337834, K50974556, K55543151, K08593253 and K42910051 and apply necessary updates.

OpenSSL Org. has released security update to address vulnerabilities in openssl. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review OpenSSL Security Advisory and apply necessary updates.

FreeBSD has released security updates to address vulnerabilities in ggatec, libfetch and openssl. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review FreeBSD Security Advisories FreeBSD-SA-21:14.ggatec, FreeBSD-SA-21:15.libfetch and FreeBSD-SA-21:16.openssl and apply necessary updates.

Advisory No: TZCERT/SA/2021/08/24 Date of First Release: 24th August 2021 Source: Microsoft Software Affected:  Microsoft Exchange Server 2019Microsoft Exchange Server 2016Microsoft Exchange Server 2013 Overview: Microsoft Exchange Server contains remote code execution vulnerabilities as a result of improper input validation. Exploitation attempts leverage the latest line of “ProxyShell” Microsoft Exchange vulnerabilities. Description: Vulnerabilities exist in a way Microsoft Exchange Servers …