Vulnerability only listed as important, not critical, by vendor, but could have huge impact
ALISO VIEJO, Calif. - Californer -- Verismic, a global leader in cloud-based IT management and security technology, has released its latest Patch Tuesday assessment. The October 2019 Patch Tuesday from Microsoft only includes 59 updates, much less than last month's release of 80 updates. However, this doesn't mean IT departments should be complacent, here are still nine updates listed as critical and 49 listed as important.
CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.
More on The Californer
Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."
CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.
Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019
More on The Californer
About Verismic Software, Inc.
Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.
CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.
More on The Californer
- Environmental Activist Band 'Instrument of Peace' is Hosting Its Album Release Celebration
- California CRV is Finished! Or is it?
- Former San Marcos High School Principal Files Appeal After Court Ruling Against His Reinstatement
- Adoption Month Resolution Recognizes Local Foster Parent
- Home Sweet Home: National Adoption Awareness Month Event
Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."
CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.
Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019
More on The Californer
- California: Governor Newsom Issues Executive Order to Support Communities Recovering from Ridgecrest Earthquakes
- California: Governor Newsom Announces Appointments 10.18.19
- California: Governor Newsom Grants Executive Clemency 10.18.19
- Opening Reception Friday, November 8, 2019, 6-8pm
- San Francisco Writer Anh Lê Remembers U.S. Representative Elijah Cummings
About Verismic Software, Inc.
Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.
Source: Verismic Software
0 Comments
Latest on The Californer
- California: TOMORROW: Governor Newsom to Deliver Remarks at CSU Graduation Initiative 2025 Symposium
- Just Outsourcing Releases Scariest Update Ever With New Content Generation Tricks And Treats
- New Rock Jockey Pro Bundle includes Abaco Little Giant Automatic Stone Lifter ALG50A
- Network Time Foundation Joins Open Source Initiative
- MC Companies Prescribes Happy and Healthy Lifestyles To Employees And Residents
- Emery Pharma and CP Lab Safety Exhibiting at the 2019 AAPS Annual Meeting in San Antonio, Texas
- PixelMill President Takes First Place at Microsoft's Developer Kitchen in Redmond
- Introducing Prospect Financial Group's Top Loan Officer for Quarter 3, 2019
- California: Governor Newsom Announces Release of Nation's First Statewide Earthquake Early Warning System
- Savas Beatie LLC is the Recipient of a Prestigious Book Award for 2019
- Children's Hunger Fund and Poverty Encounter Building Preserved in Saddle Ridge Fire
- Mark Powell & Charles Daff Expand Snell & Wilmer's Private Client Services Group in Orange County
- Lexus Warranty Alternatives Include Choice of Repair Shop
- Oak Tree Business Systems, Inc. Asked the Community to Help Donate Blood and They Stepped Up
- Weinstein Spira Announces Multiple Promotions
- San Francisco: Mayor London Breed Announces Plan to Close Hall of Justice to Make Way for Future Justice Campus
- San Francisco: Statement from Mayor Breed on 30th Anniversary of Loma Prieta Earthquake
- Take Part This National Breast Cancer Awareness Month to Take Down the Ultimate Opponent
- The Deliciously Dark Song That Should Have Been in Disney's Maleficent: Mistress of Evil
- La Marketplace B2B de Trace One pour booster les ventes et l'innovation dans l'univers du retail et des PGC