7x Second Security [27-February-2023]
Using VMware Carbon Black Cloud App Control?
Do this: Patch immediately.
Why: VMware recently released patches addressing a critical-severity injection vulnerability in the Carbon Black App Control Product, allowing an attacker to gain unauthorized access to the server operating system.
Additional Info: https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html
Using Cisco Application Policy Infrastructure Controller (APIC) or Nexus 9000 series switches?
Do this: Patch immediately.
Why: Cisco recently released patches addressing multiple vulnerabilities, including 2 high-severity flaws that lead to denial-of-service situations.
Additional Info: https://www.securityweek.com/cisco-patches-high-severity-vulnerabilities-in-aci-components/?web_view=true
Using Google Chrome?
Do this: Patch immediately.
Why: Google recently released patches addressing multiple vulnerabilities including a critical-severity flaw in the Chrome web browser leading to remote code execution.
Additional Info: https://www.scmagazine.com/news/vulnerability-management/google-critical-rce-bug-chrome-browser?&web_view=true
