[BESAdmin-Announcements] Content Modification: Updates for Kev Content published 2025-03-24

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Mon Mar 24 14:09:39 PDT 2025 

Total New Fixlets:      0
Total Updated Fixlets:  48
Total Fixlets in Site:  2909
Total CVEs Covered:     834
Release Date:           2025-03-24

New Fixlets:
    No Fixlets Added In This Release

Updated Fixlets:
    28930    Linux Kernel Use-After-Free Vulnerability - RHEL
    34820    Microsoft Windows Task Scheduler Privilege Escalation
Vulnerability - Windows Server 2025
    35590    Jenkins Command Line Interface (CLI) Path Traversal
Vulnerability - Any Version of Linux
    30470    Linux Kernel Use-After-Free Vulnerability - RHEL
    33290    Apple Multiple Products WebKit Memory Corruption Vulnerability
- RHEL
    33420    Apple iOS, iPadOS, and macOS Webkit Use-After-Free
Vulnerability - Oracle Linux
    35980    Microsoft Windows Ancillary Function Driver for WinSock
Heap-Based Buffer Overflow Vulnerability - Windows Server 2025
    16270    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Windows
    33300    Apple Multiple Products WebKit Use-After-Free Vulnerability -
RHEL
    28950    Linux Kernel Privilege Escalation Vulnerability - RHEL
    33430    Apple Multiple Products WebKit Use-After-Free Vulnerability -
Oracle Linux
    20120    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of MacOS
    35990    Microsoft Windows Storage Link Following Vulnerability -
Windows Server 2025
    33310    Apple Multiple Products WebKit Code Execution Vulnerability -
RHEL
    35490    Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based
Buffer Overflow Vulnerability - Windows Server 2025
    34810    Microsoft Windows NTLMv2 Hash Disclosure Spoofing
Vulnerability - Windows Server 2025
    33450    Apple Multiple Products WebKit Memory Corruption Vulnerability
- Oracle Linux
    35500    Microsoft Windows Hyper-V NT Kernel Integration VSP
Use-After-Free Vulnerability - Windows Server 2025
    36020    Linux Kernel Out-of-Bounds Write Vulnerability - RHEL
    33460    Apple Multiple Products WebKit Use-After-Free Vulnerability -
Oracle Linux
    18230    Mozilla Firefox and Thunderbird Type Confusion Vulnerability -
Any Version of Linux
    22710    Jenkins Stapler Web Framework Deserialization of Untrusted
Data Vulnerability - Any Version of Linux
    34870    Android Kernel Remote Code Execution Vulnerability - RHEL
    35510    Microsoft Windows Hyper-V NT Kernel Integration VSP
Use-After-Free Vulnerability - Windows Server 2025
    33340    Apple Multiple Products WebKit Type Confusion Vulnerability -
RHEL
    30270    PHP-CGI OS Command Injection Vulnerability - Any Version of
Windows
    31810    Linux Kernel Heap-Based Buffer Overflow Vulnerability - RHEL
    33350    Apple Multiple Products WebKit Memory Corruption Vulnerability
- RHEL
    35150    Microsoft Windows Common Log File System (CLFS) Driver
Heap-Based Buffer Overflow Vulnerability - Windows Server 2025
    14930    WhatsApp Cross-Site Scripting Vulnerability - Any Version of
MacOS
    33490    Apple Multiple Products WebKit Type Confusion Vulnerability -
Oracle Linux
    17750    GitLab Community and Enterprise Editions Remote Code Execution
Vulnerability - Any Version of Linux
    33240    Apple Multiple Products WebKit Type Confusion Vulnerability -
RHEL
    33370    Apple Multiple Products WebKit Code Execution Vulnerability -
RHEL
    33500    Apple Multiple Products WebKit Memory Corruption Vulnerability
- Oracle Linux
    29790    GitLab Community and Enterprise Editions Improper Access
Control Vulnerability - Any Version of Linux
    33760    Microsoft Windows Management Console Remote Code Execution
Vulnerability - Windows Server 2022
    33770    Microsoft Windows MSHTML Platform Spoofing Vulnerability -
Windows Server 2022
    29420    ConnectWise ScreenConnect Authentication Bypass Vulnerability
- Any Version of Windows
    33260    Apple iOS, iPadOS, and macOS Webkit Use-After-Free
Vulnerability - RHEL
    33390    Apple Multiple Products WebKit Type Confusion Vulnerability -
RHEL
    14320    dotCMS Unrestricted Upload of File Vulnerability - Any
Operating System
    33400    Apple Multiple Products WebKit Out-of-Bounds Read
Vulnerability - RHEL
    33520    Apple Multiple Products WebKit Type Confusion Vulnerability -
Oracle Linux
    33270    Apple Multiple Products WebKit Use-After-Free Vulnerability -
RHEL
    33530    Apple Multiple Products WebKit Out-of-Bounds Read
Vulnerability - Oracle Linux
    35580    Jenkins User Interface (UI) Information Disclosure
Vulnerability - Any Version of Linux
    36350    SimpleHelp Path Traversal Vulnerability - Any Operating System
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20250324/fe41c0d2/attachment.html>

More information about the Besadmin-announcements mailing list