Vulnerability only listed as important, not critical, by vendor, but could have huge impact
ALISO VIEJO, Calif. - Michimich -- Verismic, a global leader in cloud-based IT management and security technology, has released its latest Patch Tuesday assessment. The October 2019 Patch Tuesday from Microsoft only includes 59 updates, much less than last month's release of 80 updates. However, this doesn't mean IT departments should be complacent, here are still nine updates listed as critical and 49 listed as important.
CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.
More on Michimich.com
Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."
CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.
Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019
More on Michimich.com
About Verismic Software, Inc.
Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.
CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.
More on Michimich.com
- MI Symptoms Web Application Helps Michiganders Track Symptoms; Informs Reopening Strategy
- Michigan regional jobless rates surge in April with COVID-19 pandemic
- Michigan: Lawmakers Sponsor Upcoming Auto Insurance Town Halls
- STARK Industries, LLC Awarded NASA JPL - VITAL Ventilator Manufacturing License to Combat the Global COVID-19 Crisis
- Proposed 2020-21 Sterling Heights Budget Funds Critical Needs with No Tax Increase
Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."
CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.
Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019
More on Michimich.com
- Evolve IP Offers Rapid Deployment of Desktop as a Service to Ingram Micro Partners
- Michigan: AG Nessel Supports Legislative Effort to Re-engage Economy Safely
- Michigan: MDARD Director Statement Regarding $22.5 Million Rural Broadband Investment from USDA
- Michigan: Transport of generator components set for June on US-41, US-2, M-183 in U.P.
- Michigan Psychological Care Offering Telemedicine
About Verismic Software, Inc.
Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.
Source: Verismic Software
Filed Under: Business
0 Comments
Latest on Michimich.com
- Launching OneQuantum LLC the Quantum Tech startup community
- OrPro Therapeutics Advances a New Inhalation Treatment Approach for COVID-19
- Michigan: M-40 resurfacing begins Monday at the Van Buren/Allegan county line
- Health Insurance Enrollment Deadlines Approaching for Michiganders who Lost Job or Experienced a Drop in Income
- Michigan: Secretary of State branch offices to reopen June 1 by appointment only
- During May, MDHHS raises awareness about continued need for foster families in Michigan; Special precautions taken during COVID-19 pandemic
- Michigan: Dickman Road resurfacing starts Monday in Battle Creek
- Michigan: MDARD Offering Tips for Mosquito Control
- Michigan: M-68 resurfacing in Cheboygan and Presque Isle counties to resume June 1
- NSG Allows Your Business to Outsource its IT Needs
- AdviCoach SE Michigan: Surviving and Thriving in COVID-19
- Sterling Heights: Closure Extended to June 12
- Omy de Oro 'The King of Punchlines' signs with Caroline, becomes first Puerto Rican artist to release a solo dembow track 'Cash'
- Michigan: Attorney General Nessel and 38 other AGs Urge Congress to Fund Expanded Access to Internet
- Michigan: DNR to host virtual meeting June 11 for Pontiac Lake State Recreation Area management planning
- NS4ed Customizes District Market Needs for Nebraska Schools
- CEO Coaching International Congratulates Fintech Startup Client Airfox on Acquisition by Retail Giant
- TSRL, Inc. awarded $3M NIH grant to continue development of microneedle patch for treatment of influenza
- A gritty, bold series featuring angels, past lives and reincarnation: SON OF SECRETS by NJ Simmonds
- Michigan: ORV trail section to close temporarily in Keweenaw County