The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Cisco has released a security advisory to address a vulnerability in Cisco Prime Infrastructure software versions 1.2, 1.3, 1.4, and 2.0 which could allow an unauthenticated, remote attacker to execute arbitrary commands with root-level privileges.
US-CERT encourages users and administrators to review the Cisco Security Advisory and apply any necessary updates to help mitigate the risk.
Google has released Google Chrome 33.0.1750.124 for several Chrome OS devices to address multiple vulnerabilities, one of which could allow a server certificate to change in a renegotiation.
Users and administrators are encouraged to review the Google Chrome release blog entry and apply the update.
Apple has released updates for iOS and Apple TV devices to address a vulnerability that allows an attacker with a privileged network position to capture or modify data in protected SSL/TLS sessions.
Updates are available:
- iOS 6.1.6 for iPhone 3GS and iPod touch 4th generation.
- iOS 7.0.6 for iPhone 4 and later, iPod touch 5th generation, and iPad 2 and later.
- Apple TV 6.0.2 for Apple TV 2nd generation and later.