Cybersecurity Updates For Week 7 of 2022
Multiple vulnerabilities in VMware ESXi, Workstation, and Fusion were privately reported to VMware
Multiple vulnerabilities in VMware ESXi, Workstation, and Fusion were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products.
The individual vulnerabilities documented on this VMSA have severity Important/Moderate but combining these issues may result in higher severity, hence the severity of this VMSA is at severity level Critical.
Read more:
https://www.vmware.com/security/advisories/VMSA-2022-0004.html
Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites
Patches have been issued to contain a “severe” security vulnerability in UpdraftPlus, a WordPress plugin with over three million installations
Read more:
https://thehackernews.com/2022/02/critical-flaw-uncovered-in-wordpress.html
New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager
Multiple security vulnerabilities have been disclosed in Canonical’s Snap software packaging and deployment system, the most critical of which can be exploited to escalate privilege to gain root privileges.
Read More:
https://thehackernews.com/2022/02/new-linux-privilege-escalation-flaw.html
Other news worth mentioning:
Over 620 Million Ransomware Attacks Detected in 2021
Snyk Acquires Fugue, Enters Cloud Security Market
TRAEFIK UP TO 2.6.0 TLS CONFIGURATION HOST CERTIFICATE VALIDATION
Microsoft Teams Targeted With Takeover Trojans