UCSF IT Technology

Canonical released a Security Update to address a vulnerability in LibreOffice 7.5.1.  An attacker can exploit this vulnerability to run arbitrary code on an affected system. For a complete description of the vulnerabilities and affected systems go to Microsoft Message Queuing Remote Code Execution Vulnerability.

Microsoft released a Security Update to address a vulnerability in Microsoft Windows Server 2022. An attacker can exploit this vulnerability to run arbitrary code on an affected system.

Intel released its August update to address multiple vulnerabilities in multiple Intel Products. The most severe of these issues allows for unauthorized privilege escalation and denial-of-service (DoS) attacks. For a complete description of the vulnerabilities and affected systems go to Intel Security Advisories—August 2023.

Android released its August Android update to address multiple vulnerabilities in Android Devices. The most severe of these issues is a critical security vulnerability in the System component that could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed.

Fortinet has released a security update to address a vulnerability in Fortinet FortiOS. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to FortiOS - Buffer overflow in execute extender command. IT Security 

Mandiant reported a vulnerability in SAP PowerDesigner. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to CVE-2023-37483 Detail. IT Security 

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Adobe Security Bulletins. IT Security 

Microsoft released their August Security Update to address vulnerabilities in multiple Microsoft products. An attacker can exploit some of these vulnerabilities to take control of an affected system.

Amazon and SUSE released security updates to address a vulnerability in Wireshark. An attacker could exploit this vulnerability to create a heap-based buffer overflow, and possibly code execution. For a complete description of the vulnerabilities and affected systems go to CVE-2023-0667 Detail - NVD. IT Security  Read more about IT Security service offerings.

Mozilla released security updates to address vulnerabilities in multiple Mozilla products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Mozilla Foundation Security Advisories. IT Security