Black Arrow Cyber Advisory 14/12/2022 – Adobe, Citrix and VMware release patches for vulnerabilities

Adobe

Executive Summary

Adobe has released patches to address 38 vulnerabilities in multiple enterprise products with vulnerabilities rated important to moderate.

Products affected include Adobe Experience Manager, AEM Cloud Service, and Adobe Illustrator on both Windows and macOS platforms.

What’s the risk to me or my business?

Exploitation of these vulnerabilities could result in arbitrary code execution and security feature bypass which would lead to further compromise of confidentiality, integrity and availability of organisation information.

What can I do?

Contact your Managed Service Provider (MSP) to confirm if AEM is currently used in your organisation and confirm if the vulnerabilities are being managed and patched in line with Adobe guidance.

Further technical information on the vulnerabilities can be found here: https://helpx.adobe.com/security/products/experience-manager/apsb22-59.html


Citrix

Executive Summary

Citrix have released updates after Citrix and the National Security Agency (NSA) identified usage of vulnerabilities which have allowed attackers to target Citrix Access Delivery Controller (ADC) and Citrix Gateway to remotely perform arbitrary code execution.

What’s the risk to me or my business?

The vulnerabilities could allow for attackers to bypass authentication controls and gain access your organisation, which would lead to further compromise of confidentiality, integrity and availability of organisation information.

What can I do?

Contact your MSP to confirm if Citrix ADC and Citrix Gateway is currently being used for your organisation and confirm if the vulnerabilities are being managed and patched in line with Citrix guidance.

Further information can be found here: https://support.citrix.com/article/CTX474995/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202227518

The NSA guidance can be found here: https://media.defense.gov/2022/Dec/13/2003131586/-1/-1/0/CSA-APT5-CITRIXADC-V1.PDF


VMware

Executive Summary

VMware fixed three flaws in multiple products including a virtual machine escape issue. Products affected include VMware ESXi, Workstation and Fusion.

What’s the risk to me or my business?

Vulnerabilities could lead to variously code execution, command injection or directory traversal attacks.

What can I do?

Contact your IT team or MSP to see if VMware ESXi, Workstation or Fusion are currently being used for your organisation and confirm if the vulnerabilities are being managed and patched in line with VMware guidance.

More information can be found here: https://www.vmware.com/security/advisories/VMSA-2022-0033.html

Need help understanding your gaps, or just want some advice? Get in touch with us.


#threatadvisory #threatintelligence #cybersecurity

Previous
Previous

Black Arrow Cyber Threat Briefing 16 December 2022

Next
Next

Black Arrow Cyber Advisory 14/12/2022 – Microsoft Patch Tuesday – 48 Patches, Two Zero-Days Fixed, one under active exploitation