Kashif Ali

Original release date: May 27, 2020

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apple security pages for the following products and apply the necessary updates:

• macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra
• Windows Migration Assistant 2.2.0.0
• Safari 13.1.1
• iCloud for Windows 11.2
• iCloud for Windows 7.19

Original release date: May 22, 2020

Microsoft has released a security update to address a vulnerability in Edge (Chromium-based). A remote attacker could exploit this vulnerability to write files to arbitrary locations and gain elevated privileges.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft’s Security Advisory for CVE-2020-1195 and apply the necessary update.

Original release date: May 22, 2020

Cisco has released security updates to address vulnerabilities in Unified CCX software and Prime Network Registrar. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco advisories and apply the necessary updates:

• Unified Contact Center Express Remote Code Execution Vulnerability cisco-sa-uccx-rce-GMSC6RKN
• Prime Network Registrar DHCP Denial-of-Service Vulnerability cisco-sa-cpnr-dhcp-dos-BkEZfhLP

For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page.