01/11/2022
Advisory
Users operating TLS servers may consider disabling TLS client authentication, if it is being used, until fixes are applied.
Adviezen
26/10/2022
Advisory
To address the issue, VMware has updated XStream to version 1.4.19 and to apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' available at:
19/10/2022
Advisory
The Centre for Cyber security Belgium recommends system administrators to identify software which includes this library as a supply-chain dependency.
13/10/2022
Advisory
The CCB recommends installing updates for vulnerable devices with the highest priority, after thorough testing.
The Centre for Cyber security Belgium recommends system administrators to patch vulnerable systems as soon as possible and analyze system and network logs for any suspicious activity. This report has instructions to help your organization.
13/10/2022
Advisory
The CCB recommends installing updates for vulnerable software with the highest priority, after thorough testing.Detailed instructions can be found on: Adobe security advisory
12/10/2022
Advisory
Mitigate/workaround
• Customers can install the “pax” module which avoids using the vulnerable “cpio” module
• More info on Security Update - make sure to install pax/spax - Zimbra : Blog
Monitor/Detect
Upgrade
Always ensure your systems are up to date.
30/09/2022
Advisory
Microsoft Exchange Online Customers:
- Microsoft Exchange Online Customers do not need to take any action.
Mitigations for On-premise Microsoft Exchange customers: