Pulse Secure Releases Security Update for Pulse Secure Connect

Original release date: August 6, 2021

Pulse Secure has released Pulse Secure Connect system software version 9.1R12 to address multiple vulnerabilities an attacker could exploit to take control of an affected system.

CISA encourages users and administrators to review Pulse Secure’s Security Advisory SA44858 and apply the necessary update.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA Releases Security Advisory for InterNiche Products

Original release date: August 5, 2021

CISA has released an Industrial Control Systems (ICS) advisory detailing multiple vulnerabilities in InterNiche products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review the ICS Advisory ICSA-21-217-01 HCC Embedded InterNiche TCP/IP Stack NicheLite and apply the necessary updates and mitigations.

This product is provided subject to this Notification and this Privacy & Use policy.

VMware Releases Security Updates for Multiple Products

Original release date: August 5, 2021

VMware has released security updates to address vulnerabilities in multiple products. An attacker could exploit these vulnerabilities to gain access to confidential information.

CISA encourages users and administrators to review VMware Security Advisory VMSA-2021-0016 and apply the necessary updates or workaround.

This product is provided subject to this Notification and this Privacy & Use policy.

Cisco Releases Security Updates 

Original release date: August 5, 2021

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit  these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.

CISA encourages users and administrators to review the following Cisco advisories and apply the necessary updates:

This product is provided subject to this Notification and this Privacy & Use policy.

Google Releases Security Updates for Chrome

Original release date: August 4, 2021

Google has released Chrome version 92.0.4515.131 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

CISA encourages users and administrators to review the Chrome Release Note and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA Releases Security Advisory for Swisslog Healthcare

Original release date: August 3, 2021

CISA has released an Industrial Control Systems (ICS) advisory detailing multiple vulnerabilities in Swisslog Healthcare Translogic Pneumatic Tube Systems (PTS). An attacker could exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review the ICS Medical Advisory ICSMA-21-215-01 Swisslog Translogic PTS and apply the necessary updates and mitigations.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA and NSA Release Kubernetes Hardening Guidance

Original release date: August 2, 2021 | Last revised: August 3, 2021

The National Security Agency (NSA) and CISA have released Kubernetes Hardening Guidance, a cybersecurity technical report detailing the complexities of securely managing Kubernetes—an open-source, container-orchestration system used to automate deploying, scaling, and managing containerized applications. 

This report describes the security challenges associated with setting up and securing a Kubernetes cluster, and presents hardening strategies to guide system administrators avoid common misconfigurations. 

CISA encourages users and administrators to ensure the security of applications by following the hardening guidance outlined in this report. 

This product is provided subject to this Notification and this Privacy & Use policy.