Welcome to the BigFix Briefing Room!
This is a monthly series that breaks down the monthly vulnerability workload.
The value of this series is a focus on prioritization and clarification on exploit risks.
We aim to be the discernable signal that stands apart from all the noise.
Hosts: Joe Saylor & Michelle McGough
This month’s agenda:
- Microsoft Security
- Monthly Update Summary
- Zero Days
- Notable Exploits
- High Severity Vulnerabilities, including two mismatches in
rating\description)
- Linux Updates
- Ivanti and Fortinet VPN Edge Device Vulnerabilities
- Takeaway: ensure you configure your BigFix Internet Facing Relays
properly
- Upgrade to BigFix 11 for enhanced security capabilities
- AnyDesk Compromise
- Certificate revocation
- BigFix has published content to streamline reconfiguration, eligible
customers can find it in Updates for Windows Applications Extended
- Linux Kernel Security Updates Summary
- CISA KEV
- Overview
- Google Chromium V8 vulnerability
- BigFix 10.0.11 patch now available!!
- Improves console load times
- libcURL update to 8.5.0, resolves critical vulnerability - note that BigFix
does not leverage the vulnerable calls, but we still want you to update
that library to reduce your organizations vulnerability footprint
- Includes Agent and Inspectors for IBM VIOS 3.1.3 distro
BigFix Resources
- Community Forum - [ Ссылка ]
- BigFix Slack - [ Ссылка ] (fastest way for customers to get in
touch in real time - request to join, a human will review and approve your
request)
- Links to all the BigFix resources - [ Ссылка ]
