[BESAdmin-Announcements] Content Modification: Updates for Kev Content published 2025-09-08

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Mon Sep 8 08:27:50 PDT 2025 

Total New Fixlets:      2
Total Updated Fixlets:  51
Total Fixlets in Site:  3114
Total CVEs Covered:     902
Release Date:           2025-09-08

New Fixlets:
    39260    Meta Platforms WhatsApp Incorrect Authorization Vulnerability
- Any Version of MacOS
    39230    Android Runtime Use-After-Free Vulnerability - Any Current
Service Pack of Android


Updated Fixlets:
    37120    Apache Tomcat Path Equivalence Vulnerability - Any Version of
Windows
    39040    PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability
- Any Version of MacOS
    14210    Microsoft Malware Protection Engine Improper Restriction of
Operations Vulnerability - Any Version of Windows
    35460    Microsoft Windows Hyper-V NT Kernel Integration VSP
Use-After-Free Vulnerability - Windows 11
    35970    Microsoft Windows Ancillary Function Driver for WinSock
Heap-Based Buffer Overflow Vulnerability - Windows 11
    38790    Microsoft Windows External Control of File Name or Path
Vulnerability - Windows 11
    38280    Microsoft Windows DWM Core Library Use-After-Free
Vulnerability - Windows 11
    28930    Linux Kernel Use-After-Free Vulnerability - RHEL
    30470    Linux Kernel Use-After-Free Vulnerability - RHEL
    38530    Linux Kernel Out-of-Bounds Read Vulnerability - RHEL
    37640    Apple iOS Type Confusion Vulnerability - Ubuntu
    22670    PaperCut MF/NG Improper Access Control Vulnerability - Any
Version of Windows
    35470    Microsoft Windows Hyper-V NT Kernel Integration VSP
Use-After-Free Vulnerability - Windows 11
    38290    Microsoft Windows Scripting Engine Type Confusion
Vulnerability - Windows 11
    28950    Linux Kernel Privilege Escalation Vulnerability - RHEL
    32790    Apple iOS, iPadOS, and macOS WebKit Remote Code Execution
Vulnerability - Ubuntu
    35480    Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based
Buffer Overflow Vulnerability - Windows 11
    38650    Linux Kernel Improper Ownership Management Vulnerability -
RHEL
    38300    Microsoft Windows Ancillary Function Driver for WinSock
Use-After-Free Vulnerability - Windows 11
    38270    Microsoft Windows Common Log File System (CLFS) Driver
Use-After-Free Vulnerability - Windows 11
    32680    Apple iOS, iPadOS, and macOS WebKit Remote Code Execution
Vulnerability - Ubuntu
    30380    Linux Kernel Use-After-Free Vulnerability - Ubuntu
    37040    Microsoft Windows Common Log File System (CLFS) Driver
Use-After-Free Vulnerability - Windows 11
    36020    Linux Kernel Out-of-Bounds Write Vulnerability - RHEL
    21430    Microsoft Exchange Server Remote Code Execution Vulnerability
- Exchange Server 2010
    34870    Android Kernel Remote Code Execution Vulnerability - RHEL
    37560    Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
- Windows 11
    35960    Microsoft Windows Storage Link Following Vulnerability -
Windows 11
    37180    Linux Kernel Out-of-Bounds Access Vulnerability - RHEL
    30140    Linux Kernel Use-After-Free Vulnerability - Ubuntu
    31810    Linux Kernel Heap-Based Buffer Overflow Vulnerability - RHEL
    35140    Microsoft Windows Common Log File System (CLFS) Driver
Heap-Based Buffer Overflow Vulnerability - Windows 11
    35660    VMware Tools Authentication Bypass Vulnerability - Ubuntu
    36690    Microsoft Windows Fast FAT File System Driver Integer Overflow
Vulnerability - Windows 11
    15700    TeamViewer Desktop Bypass Remote Login Vulnerability - Any
Version of Windows
    36700    Microsoft Windows Management Console (MMC) Improper
Neutralization Vulnerability - Windows 11
    38620    Linux Kernel Improper Ownership Management Vulnerability -
Ubuntu
    28640    Sudo Heap-Based Buffer Overflow Vulnerability - Ubuntu
    19170    Webmin Command Injection Vulnerability - Any Version of Linux
    14180    Microsoft Defender Remote Code Execution Vulnerability - Any
Version of Windows
    32740    Apple Multiple Products WebKit Integer Overflow Vulnerability
- Ubuntu
    36710    Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability -
Windows 11
    39020    PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability
- Any Version of Windows
    32750    Apple Multiple Products WebKit Memory Corruption Vulnerability
- Ubuntu
    36720    Microsoft Windows NTFS Heap-Based Buffer Overflow
Vulnerability - Windows 11
    36850    Linux Kernel Use of Uninitialized Resource Vulnerability -
RHEL
    38260    Microsoft Windows Common Log File System (CLFS) Driver
Heap-Based Buffer Overflow Vulnerability - Windows 11
    28660    Linux Kernel Use-After-Free Vulnerability - Ubuntu
    37620    Apple iOS, iPadOS, macOS Use-After-Free Vulnerability - Ubuntu
    36730    Microsoft Windows NTFS Information Disclosure Vulnerability -
Windows 11
    22910    PaperCut MF/NG Improper Access Control Vulnerability - Any
Version of MacOS
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20250908/ebc01d03/attachment.html>

More information about the Besadmin-announcements mailing list