Cybersecurity
Alerts

Cybersecurity Alerts

Follow us on Twitter @MCNCSecurity to receive these alerts as they are posted.

2023 Cybersecurity Alerts

VMWare vCenter Server and Aria Operations Critical Vulnerabilities

Date of Notice: 10/25/2023

Action Level – Critical

Read More here…

Oracle Remote Code Execution Vulnerabilities

Date of Notice: 10/18/2023

Action Level – Critical

Read More here…

Cisco IOS XE Web UI Vulnerability

Date of Notice: 10/16/2023

Action Level – Critical

Read More here…

CVE-2023-22515 Alert

Date of Notice: 10/16/2023

Action Level – Critical

Read More here…

WS_FTP Vulnerability Notice

Date of Notice: 10/4/2023

Action Level – Critical

Read More here…

Fortinet Security Updates September 2023

Date of Notice: 09/15/2023

Action Level – High

Read More here…

Citrix Netscaler Active Exploit

Date of Notice: 07/19/2023

Action Level – Critical

Read More here…

Sonicwall Critical Security Updates

Date of Notice: 07/13/2023

Action Level – Critical

Read More here…

FortiOS Remote Code Execution Vulnerability

Date of Notice: 07/12/2023

Action Level – Critical

Read More here…

Cisco AnyConnect/Secure Client Vulnerability Exploit

Date of Notice: 06/22/2023

Action Level – High

Read More here…

FortiOS Remote Code Execution Vulnerability

Date of Notice: 06/12/2023

Action Level – Critical

Read More here…

Papercut MF & NG Active Exploit

Date of Notice: 04/20/2023

Action Level – Critical

Read More here…

Google Chrome Vulnerability Under Active Exploit

Date of Notice: 04/17/2023

Action Level – Critical

Read More here…

3CX Desktop Application Exploit

Date of Notice: 03/30/2023

Action Level – Critical

Read More here…

Microsoft Outlook Critical Privilege Escalation Vulnerability

Date of Notice: 03/15/2023

Action Level – Critical

Read More here…

FortiOS Remote Code Execution Vulnerability

Date of Notice: 03/10/2023

Action Level – Critical

Read More here…

Veeam Backup & Replication vulnerability

Date of Notice: 03/09/2023

Action Level – High

Read More here…

(High) VMware ESXi vulnerability under active exploit

Date of Notice: 02/06/2023

Action Level – High

Read More here…

(High) F5 | Control / BigIP SOAP vulnerability

Date of Notice: 02/06/2023

Action Level – High

Read More here…

Critical Foxit PhantomPDF Vulnerability

Date of Notice: 12/19/2022

Action Level – Critical

Read More here…

Critical Fortinet Vulnerability Being Actively Exploited

Date of Notice: 12/13/2022

Action Level – Critical

Read More here…

Microsoft Patch Tuesday, November 8, 2022

Date of Notice: 11/08/2022

Action Level – High

Read More here…

Cisco AnyConnect For Windows Active Exploit

Date of Notice: 10/26/2022

Action Level – High

Read More here…

Palo Alto PAN-OS Security Update

Date of Notice: 10/13/2022

Action Level – High

Read More here…

Microsoft Patch Tuesday, October 11, 2022

Date of Notice: 10/11/2022

Action Level – High

Read More here…

(Critical) FortiOS / FortiProxy Vulnerability

Date of Notice: 10/07/2022

Action Level – Critical

Read More here…

Apple Security Update

Date of Notice: 09/12/2022

Action Level – Critical

Read More here…

Google Chrome Vulnerability Under Active Exploit

Date of Notice: 09/06/2022

Action Level – High

Read More here…

Critical Apple Security updates

Date of Notice: 08/18/2022

Action Level – Critical

Read More here…

Critical Google Chrome vulnerability under active exploit

Date of Notice: 08/17/2022

Action Level – Critical

Read More here…

Microsoft Patch Tuesday, August 9, 2022

Date of Notice: 08/10/2022

Action Level – High

Read More here…

VMware Patches Released

Date of Notice: 08/09/2022

Action Level – Critical

Read More here…

Fortinet Patches Released

Date of Notice: 7/08/2022

Action Level – High

Read More here…

Microsoft Windows Zero-Day Vulnerability (CVE-2022-30190)

Date of Notice: 5/31/2022

Action Level – High

Read More here…

F5 BIG-IP Vulnerability

Date of Notice: 5/05/2022

Action Level – Critical

Read More here…

Microsoft Patch Tuesday, April 13, 2022

Date of Notice: 4/13/2022

Action Level – High

Read More here…

Making Sense of SpringShell

Date of Notice: 3/31/2022

Action Level – High

Read More here…

Apple Security Update addressing 0-Day Active Exploit

Date of Notice: 2/11/2022

Action Level – High

Read More here…

Ubiquiti UniFi Security Advisory

Date of Notice: 2/3/2022

Action Level – Critical

Read More here…

Apple Security Updates Addressing Active Exploit

Date of Notice: 1/26/2022

Action Level – High

Read More here…

Multiple F5 Vulnerabilities Affecting all Modules of F5 Products

Date of Notice: 1/21/2022

Action Level – HightoMedium

Read More here…

Microsoft Patch Tuesday, January 11, 2022

Date of Notice: 1/12/2022

Action Level – High

Read More here…

Attackers using Google Docs Comment field for Phishing Attacks

Date of Notice: 1/7/2022

Action Level – Informational

Read More here…

(High) VTool for Finding and Mitigating Log4j Vulnerabilities – Logpresso

Date of Notice: 12/28/2021

Action Level – High

Read More here…

(Critical) Vulnerability for Log4j, CVE-2021-44228, Log4Shell, Update #2

Date of Notice: 12/17/2021

Action Level – Critical

Read More here…

(Critical) Vulnerability for Log4j, CVE-2021-44228, Log4Shell, Update #1

Date of Notice: 12/14/2021

Action Level – Critical

Read More here…

(Critical) Vulnerability for Log4j, CVE-2021-44228, Log4Shell

Date of Notice: 12/10/2021

Action Level – Critical

Read More here…

Sonicwall SMA 100 Series Security Update

Date of Notice: 12/8/2021

Action Level – Critical

Read More here…

ManageEngine Desktop Central Security Update

Date of Notice: 12/3/2021

Action Level – Critical

Read More here…

Palo Alto Various Vulnerability

Date of Notice: 11/12/2021

Action Level – Critical to Medium depending on devices

Read More here…

Citrix Vulnerabilities

Date of Notice: 11/10/2021

Action Level – Critical

Read More here…

ManageEngine ADSelfService Plus Security Update

Date of Notice: 11/10/2021

Action Level – Critical

Read More here…

Microsoft Exchange Security Update

Date of Notice: 11/10/2021

Action Level – Important

Read More here…

(Action Requested) Hikvision IP Camera Vulnerability

Date of Notice: 10/29/2021

Action Level – Critical

Read More here…

iOS and iPadOS Security Update

Date of Notice: 10/11/2021

Action Level – Important

Read More here…

Apache HTTP Server 2.4.49 vulnerability

Date of Updated Notice: 10/8/2021
Initial Post Date: 10/5/2021

Action Level – Important

Read More here…

VMware vCenter Vulnerability (VMSA-2021-0020)

Date of Notice: 9/21/2021

Action Level – Critical

Read More here…

Various Confluence Vulnerability

Date of Notice: 9/2/2021

Action Level — Critical

Read More here…

Various F5 Vulnerabilities

Date of Notice: 8/27/2021

Action Level — HIGH

Read More here…

PetitPotam & SeriousSAM (affected Windows Devices)

Date of Notice: 07/27/21

Action Level – High

Read More here…

Critical Windows Print Spooler Vulnerability

Date of Notice: 07/01/2021

Action Level — Critical

Read More here…

ASA Vulnerability

Date of Notice: 6/25/21

Action Level — Critical

Read More here…

Windows 2004/20H2 vuln (affected Windows Devices)

Date of Notice: 5/20/201

Action Level — Critical

Read More here…

Cisco Firewall Vulnerability

Date of Notice: 4/28/21

Action Level — Critical

Read More here…

Pulse Secure

Date of Notice: 4/20/21

Action Level — High

Read More here…

Microsoft Exchange

Date of Notice: 4/13/21

Action Level — Critical

Read More here…

MCNC’s Cybersecurity Alerts provide timely information about emerging and current security issues, vulnerabilities, and exploits that may impact MCNC’s Community. This list of security alerts is not a fully inclusive list of known security alerts.

If you have any questions or concerns about these alerts,
please contact us at securityservices@mcnc.org

Cybersecurity Consulting

Cybersecurity Solutions

Cybersecurity Alerts