US CERT Current Activity
Adobe Releases Security Updates for Multiple Products
Apr 9, 2024
Adobe has released security updates to address multiple vulnerabilities in Adobe software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Users and administrators are encouraged to review the following Adobe Security Bulletins and apply the necessary updates: Adobe After Effects Adobe Photoshop Adobe Commerce and Magento Adobe InDesign Adobe Experience Manager Adobe Media Encoder Adobe Bridge Adobe Illustrator Adobe Animate
CISA Releases One Industrial Control Systems Advisory
Apr 9, 2024
CISA released one Industrial Control Systems (ICS) advisory on April 9, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-100-01 SUBNET PowerSYSTEM Server and Substation Server CISA encourages users and administrators to review the newly released ICS advisory for technical details and mitigations.
Fortinet Releases Security Updates for Multiple Products
Apr 9, 2024
Fortinet released security updates to address vulnerabilities in multiple products, including OS and FortiProxy. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply necessary updates: FR-IR-23-345 FortiClientMac - Lack of configuration file validation FG-IR-23-493 FortiOS & FortiProxy - Administrator cookie leakage FG-IR-23-087 FortiClient Linux - Remote Code Execution due to dangerous nodejs configuration