[BESAdmin-Announcements] Content Modification: Updates for Kev Content published 2025-07-28

[Announcements for BES Administrators]

Total New Fixlets:      0
Total Updated Fixlets:  45
Total Fixlets in Site:  3093
Total CVEs Covered:     893
Release Date:           2025-07-28

New Fixlets:
    No Fixlets Added In This Release

Updated Fixlets:
    37120    Apache Tomcat Path Equivalence Vulnerability - Any Version of
Windows
    14210    Microsoft Malware Protection Engine Improper Restriction of
Operations Vulnerability - Any Version of Windows
    28930    Linux Kernel Use-After-Free Vulnerability - RHEL
    38530    Linux Kernel Out-of-Bounds Read Vulnerability - RHEL
    30470    Linux Kernel Use-After-Free Vulnerability - RHEL
    37130    Apache Tomcat Path Equivalence Vulnerability - Any Version of
Linux
    19340    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
    19730    Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of MacOS
    19860    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
    28950    Linux Kernel Privilege Escalation Vulnerability - RHEL
    20120    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
    38650    Linux Kernel Improper Ownership Management Vulnerability -
RHEL
    38940    CrushFTP Unprotected Alternate Channel Vulnerability - Any
Version of Windows
    17310    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
    17950    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
    27040    Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of MacOS
    18340    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
    20650    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
    36020    Linux Kernel Out-of-Bounds Write Vulnerability - RHEL
    18230    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
    34870    Android Kernel Remote Code Execution Vulnerability - RHEL
    25400    Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Linux
    17850    Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Linux
    33850    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
    38970    CrushFTP Unprotected Alternate Channel Vulnerability - Any
Version of Linux
    37180    Linux Kernel Out-of-Bounds Access Vulnerability - RHEL
    31810    Linux Kernel Heap-Based Buffer Overflow Vulnerability - RHEL
    19780    Mozilla Firefox Information Disclosure Vulnerability - Any
Version of MacOS
    33860    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
    17220    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
    27080    Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of MacOS
    17740    Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Linux
    26960    Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Linux
    20050    Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of MacOS
    39000    Microsoft SharePoint Improper Authentication Vulnerability -
SharePoint
    20190    Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
    18910    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
    39010    Microsoft SharePoint Code Injection Vulnerability - SharePoint
    14180    Microsoft Defender Remote Code Execution Vulnerability - Any
Version of Windows
    18150    Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Linux
    29420    ConnectWise ScreenConnect Authentication Bypass Vulnerability
- Any Version of Windows
    26990    Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Linux
    36850    Linux Kernel Use of Uninitialized Resource Vulnerability -
RHEL
    19450    Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
    38910    Microsoft SharePoint Deserialization of Untrusted Data
Vulnerability - SharePoint
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20250728/05732392/attachment.html>