VMware, Pulse Secure, Nginx, Exim and Hyper-V – all software products that are critical for many organizations and they all received security patches in May.
The trend of critical vulnerabilities in network border devices continued in April with new patches for everything from Microsoft Exchange to VPN gateways.
A big Microsoft Exchange vulnerability overshadowed everything in March. But there were also other security patches that needed attention.
A severe remote code execution in VMware ESXi and multiple authentication bypasses in Cisco products kept sysadmins busy in February.
2021 kicked off with several new dangerous vulnerabilities – from actively exploited Windows Defender remote code executions to full root level privilege escalations on Linux.
December is traditionally a more quiet month for patching due to companies preparing for the holidays and 2020 was no exception to that rule. Nevertheless, we tracked 197 newly patched vulnerabilities in the last month of the year, among them several critical ones.
Several remote code executions in Microsoft products, a VMware bug that is already exploited in the wild and multiple critical Cisco patches: November was heavy on high impact vulnerabilities.
October brought about several patches affecting developers and operation teams, from important fixes for Django to Apache Tomcat and Elastic Stacks security patches.
While everybody is still reeling from the “Zerologon” chaos many new patches already need attention. Our patch trackers registered 242 new patch releases in September.
Although we did not see the same series of critical operating system vulnerabilities like last month, August still had its fair share of important patches.