Juniper has released security updates to address a vulnerability affecting multiple versions of Junos operating systems. A remote attacker can exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to review the Juniper Security Advisory JSA11021 and apply the necessary updates....
Google Releases Security Updates for Chrome
Google has released Chrome version 81.0.4044.129 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to review the Chrome Release and apply the necessary updates. ...
WordPress Plugins- High Severity Vulnerabilities
1.Advisory: Real-Time Find and Replace plugin in WordPress Risk : High Description: The BtCIRT would like to inform the general public about the new vulnerability found in Real-Time Find and Replace plugin in WordPress discovered by the Security researchers all over the world. This vulnerability, if exploited, can lead to Cross-Site Request Forgery (CSRF) which further leads to Stored Cross-Site Scripting (Stored XSS) attacks. It can allow an attacker to perform malicious activities such as creating rogue administrative user accounts, stealing session cookies, or redirecting users to a malicious site. The flaw impacts all versions up to 3.9. Recommendation...
Google Releases Security Updates for Chrome
Google has released Chrome version 81.0.4044.122 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to review the Chrome Release and apply the necessary updates....
OpenSSL Releases Security Updates
OpenSSL version 1.1.1g has been released to address a vulnerability affecting versions 1.1.1d–1.1.1f. An attacker could exploit this vulnerability to cause a denial-of-service condition. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to review OpenSSL Security Advisory and apply the necessary update....