[BESAdmin-Announcements] Content Modification: Updates for Kev Content published 2025-06-02
Announcements for BES Administrators
besadmin-announcements at bigmail.bigfix.com
Mon Jun 2 09:24:35 PDT 2025
Total New Fixlets: 0
Total Updated Fixlets: 130
Total Fixlets in Site: 3048
Total CVEs Covered: 870
Release Date: 2025-06-02
New Fixlets:
No Fixlets Added In This Release
Updated Fixlets:
29700 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2012
16390 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Windows
36870 Linux Kernel Use of Uninitialized Resource Vulnerability -
Oracle Linux
36360 Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows Server 2016
29710 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2012 R2
15890 Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Windows
29720 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2016
17950 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
29730 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2019
36900 Google Chromium Mojo Sandbox Escape Vulnerability - Any
Version of Windows
10280 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2012
29740 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows 10
33840 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
15410 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
2610 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 7 SP1
34870 Android Kernel Remote Code Execution Vulnerability - RHEL
33850 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
29760 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows Server 2022
31810 Linux Kernel Heap-Based Buffer Overflow Vulnerability - RHEL
33860 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
36420 Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows Server 2019
29770 Microsoft Windows Print Spooler Privilege Escalation
Vulnerability - Windows 11
14930 WhatsApp Cross-Site Scripting Vulnerability - Any Version of
MacOS
20050 Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of MacOS
3670 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Vista SP2
24150 Microsoft Win32k Privilege Escalation Vulnerability - Windows
Server 2008 SP2
15980 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Windows
37490 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows Server 2016
38010 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2016
37500 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows Server 2019
38530 Linux Kernel Out-of-Bounds Read Vulnerability - RHEL
37510 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows 10
28810 Roundcube Webmail Persistent Cross-Site Scripting (XSS)
Vulnerability - Any Operating System
38030 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2012 R2
15510 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
20120 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
38040 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2012
37540 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows Server 2022
20650 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
37550 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows Server 2008 R2
32430 Microsoft WinVerifyTrust function Remote Code Execution - Any
Version of Windows
36530 Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows Server 2008 SP2
33970 Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability -
Any Operating System
36020 Linux Kernel Out-of-Bounds Write Vulnerability - RHEL
37560 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows 11
38080 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2019
30400 OSGeo GeoServer JAI-EXT Code Injection Vulnerability - Any
Operating System
19660 Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of MacOS
1230 Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code
Execution Vulnerability - Windows 8.1
19670 Google Chromium V8 Type Confusion Vulnerability - Any Version
of MacOS
36060 ProjectSend Improper Authentication Vulnerability - Any
Operating System
20190 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
19170 Webmin Command Injection Vulnerability - Any Version of Linux
18150 Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Linux
29420 ConnectWise ScreenConnect Authentication Bypass Vulnerability
- Any Version of Windows
37100 Hitachi Vantara Pentaho BA Server Special Element Injection
Vulnerability - Any Operating System
36590 Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows Server 2022
38130 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows 10
17650 Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of Linux
19700 Google Chromium V8 Type Confusion Vulnerability - Any Version
of MacOS
37110 Hitachi Vantara Pentaho BA Server Authorization Bypass
Vulnerability - Any Operating System
26880 Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Windows
28930 Linux Kernel Use-After-Free Vulnerability - RHEL
25350 Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Windows
30470 Linux Kernel Use-After-Free Vulnerability - RHEL
14090 Cacti Command Injection Vulnerability - Any Operating System
19730 Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of MacOS
14610 Teclib GLPI Remote Code Execution Vulnerability - Any
Operating System
28950 Linux Kernel Privilege Escalation Vulnerability - RHEL
38170 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2008 SP2
8990 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2012 R2
11560 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2008 R2 SP1
4400 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows Server 2008 SP2
26930 Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Windows
36660 Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows Server 2008 R2
18230 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
25400 Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free
Vulnerability - Any Version of Linux
37180 Linux Kernel Out-of-Bounds Access Vulnerability - RHEL
23870 Multiple SugarCRM Products Remote Code Execution Vulnerability
- Any Operating System
38210 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2022
19780 Mozilla Firefox Information Disclosure Vulnerability - Any
Version of MacOS
22340 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 8 Gold
17220 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
37190 Linux Kernel Out-of-Bounds Read Vulnerability - Oracle Linux
16200 Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability -
Any Version of Windows
15690 Google Chromium Mojo Insufficient Data Validation
Vulnerability - Any Version of Windows
28490 Atlassian Confluence Data Center and Server Template Injection
Vulnerability - Any Operating System
17740 Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Linux
36170 Craft CMS Code Injection Vulnerability - Any Operating System
26960 Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of Linux
37200 Linux Kernel Out-of-Bounds Access Vulnerability - Oracle Linux
36690 Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows 11
24400 Microsoft Office Uninitialized Memory Use Vulnerability -
Office
15700 TeamViewer Desktop Bypass Remote Login Vulnerability - Any
Version of Windows
28500 Google Chromium V8 Out-of-Bounds Memory Access Vulnerability -
Any Version of Windows
27990 Google Skia Integer Overflow Vulnerability - Any Version of
Windows
38240 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows Server 2008 R2
14180 Microsoft Defender Remote Code Execution Vulnerability - Any
Version of Windows
1390 Microsoft Internet Explorer Memory Corruption Vulnerability -
Windows 8.1
26990 Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of Linux
14210 Microsoft Malware Protection Engine Improper Restriction of
Operations Vulnerability - Any Version of Windows
15750 Mozilla Firefox Security Feature Bypass Vulnerability - Any
Version of Windows
15240 WSO2 Multiple Products Unrestrictive Upload of File
Vulnerability - Any Operating System
27530 Roundcube Webmail Persistent Cross-Site Scripting (XSS)
Vulnerability - Any Operating System
19340 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
16270 Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
38290 Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows 11
19860 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of MacOS
28570 Google Chromium V8 Type Confusion Vulnerability - Any Version
of Windows
17310 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
27040 Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
- Any Version of MacOS
18340 Mozilla Firefox And Thunderbird Use-After-Free Vulnerability -
Any Version of Linux
35760 Microsoft Outlook Improper Input Validation Vulnerability -
Office
17850 Mozilla Firefox Information Disclosure Vulnerability - Any
Version of Linux
14270 Atlassian Confluence Server and Data Center Remote Code
Execution Vulnerability - Any Operating System
28100 Joomla! Improper Access Control Vulnerability - Any Operating
System
27590 Atlassian Confluence Data Center and Server Improper
Authorization Vulnerability - Any Operating System
27080 Google Chromium libvpx Heap Buffer Overflow Vulnerability -
Any Version of MacOS
15820 Mozilla Firefox and Thunderbird Denial-of-Service
Vulnerability - Any Version of Windows
12750 Veeam Backup & Replication Remote Code Execution Vulnerability
- Any Version of Windows
28110 Apache Superset Insecure Default Initialization of Resource
Vulnerability - Any Operating System
30160 Google Chromium V8 Type Confusion Vulnerability - Any Version
of Windows
18910 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Linux
31200 Adobe Commerce and Magento Open Source Improper Restriction of
XML External Entity Reference (XXE) Vulnerability - Any Operating System
28130 Google Chromium WebRTC Heap Buffer Overflow Vulnerability -
Any Version of Windows
38370 Google Chromium Loader Insufficient Policy Enforcement
Vulnerability - Any Version of Windows
16360 Trihedral VTScada (formerly VTS) Denial-of-Service
Vulnerability - Any Version of Windows
10220 Microsoft MSHTML Remote Code Execution Vulnerability - Windows
Server 2012
14320 dotCMS Unrestricted Upload of File Vulnerability - Any
Operating System
16890 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
Windows
36850 Linux Kernel Use of Uninitialized Resource Vulnerability -
RHEL
31730 Google Chromium V8 Inappropriate Implementation Vulnerability
- Any Version of Windows
19450 Mozilla Firefox Use-After-Free Vulnerability - Any Version of
MacOS
31740 Google Chromium V8 Type Confusion Vulnerability - Any Version
of Windows
36350 SimpleHelp Path Traversal Vulnerability - Any Operating System
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20250602/981d9b7f/attachment.html>
More information about the Besadmin-announcements
mailing list