
<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">


<head>


<meta http-equiv="Content-Type" content="text/html; charset=utf-8">


<meta name="Generator" content="Microsoft Word 15 (filtered medium)">


<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}


o\:* {behavior:url(#default#VML);}


w\:* {behavior:url(#default#VML);}


.shape {behavior:url(#default#VML);}


</style><![endif]--><style><!--


/* Font Definitions */


@font-face


        {font-family:"Cambria Math";


        panose-1:2 4 5 3 5 4 6 3 2 4;}


@font-face


        {font-family:Calibri;


        panose-1:2 15 5 2 2 2 4 3 2 4;}


@font-face


        {font-family:"Segoe UI";


        panose-1:2 11 5 2 4 2 4 2 2 3;}


/* Style Definitions */


p.MsoNormal, li.MsoNormal, div.MsoNormal


        {margin:0in;


        font-size:11.0pt;


        font-family:"Calibri",sans-serif;}


a:link, span.MsoHyperlink


        {mso-style-priority:99;


        color:#0563C1;


        text-decoration:underline;}


.MsoChpDefault


        {mso-style-type:export-only;


        font-size:10.0pt;}


@page WordSection1


        {size:8.5in 11.0in;


        margin:1.0in 1.0in 1.0in 1.0in;}


div.WordSection1


        {page:WordSection1;}


--></style><!--[if gte mso 9]><xml>


<o:shapedefaults v:ext="edit" spidmax="1026" />


</xml><![endif]--><!--[if gte mso 9]><xml>


<o:shapelayout v:ext="edit">


<o:idmap v:ext="edit" data="1" />


</o:shapelayout></xml><![endif]-->


</head>


<body lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">


<div class="WordSection1">


<p class="MsoNormal">FYSA<o:p></o:p></p>


<p class="MsoNormal"><o:p> </o:p></p>


<p class="MsoNormal"><o:p> </o:p></p>


<p class="MsoNormal"><o:p> </o:p></p>


<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" align="left" style="border-collapse:collapse;margin-left:6.75pt;margin-right:6.75pt">


<tbody>


<tr>


<td width="623" valign="top" style="width:467.5pt;padding:0in 5.4pt 0in 5.4pt">


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<a name="_Hlk92711608"><o:p> </o:p></a></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black"><img width="602" height="153" style="width:6.2708in;height:1.5902in" id="Picture_x0020_1" src="cid:image002.png@01D80D08.CFCB5B60"></span><o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><o:p> </o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608">CISA has updated </span><a href="https://www.cisa.gov/known-exploited-vulnerabilities-catalog" target="_blank"><span style="mso-bookmark:_Hlk92711608">the known exploited vulnerabilities catalog</span><span style="mso-bookmark:_Hlk92711608"></span></a><span style="mso-bookmark:_Hlk92711608"> based


 on reliable evidence that threat actors are actively using these vulnerabilities to exploit public or private organizations. <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"> <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608">The catalog update reflects the following additions: <o:p></o:p></span></p>


<table class="MsoNormalTable" border="1" cellspacing="0" cellpadding="0" width="479" style="width:359.25pt;background:white;border-collapse:collapse">


<tbody>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><b><span style="color:black">CVE Number</span></b><span style="color:black"> </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="top" style="width:252.75pt;border:solid windowtext 1.0pt;border-left:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><b><span style="color:black">CVE Title</span></b><span style="color:black"> </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="top" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-32648 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">October CMS Improper Authentication </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-25296 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Nagios XI OS Command Injection </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-25297  </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Nagios XI OS Command Injection </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-25298 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Nagios XI OS Command Injection </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-40870 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Aviatrix Controller Unrestricted Upload of File </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-33766 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Microsoft Exchange Server Information Disclosure </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-21975 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">VMware Server Side Request Forgery in vRealize Operations Manager API </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-21315 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">System Information Library for Node.JS Command Injection </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2021-22991 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">F5 BIG-IP Traffic Management Microkernel Buffer Overflow </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2020-14864 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Oracle Corporation Business Intelligence Enterprise Edition Path Transversal </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2020-13671 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Drupal core Un-restricted Upload of File </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2020-11978 </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Apache Airflow Command Injection </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


<tr style="height:15.0pt">


<td width="142" valign="bottom" style="width:106.5pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">CVE-2020-13927  </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


<td width="337" valign="bottom" style="width:252.75pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 0in 0in 0in;height:15.0pt">


<p class="MsoNormal" style="vertical-align:baseline;mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><span style="color:black">Apache Airflow's Experimental API Authentication Bypass </span></span><span style="mso-bookmark:_Hlk92711608"></span><span style="mso-bookmark:_Hlk92711608"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><o:p></o:p></span></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


</tbody>


</table>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"> <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"> <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608">Please see the helpful link below: <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"></span><a href="https://www.cisa.gov/known-exploited-vulnerabilities" target="_blank"><span style="mso-bookmark:_Hlk92711608">Sign up for automated alerts anytime a vulnerability is added.</span><span style="mso-bookmark:_Hlk92711608"></span></a><span style="mso-bookmark:_Hlk92711608">  <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608">   <o:p></o:p></span></p>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><i>Please contact CISA (via the reporting </i></span><a href="https://us-cert.cisa.gov/report" target="_blank"><span style="mso-bookmark:_Hlk92711608"><i>portal</i></span><span style="mso-bookmark:_Hlk92711608"></span></a><span style="mso-bookmark:_Hlk92711608"><i> or


 by phone at 1-888-282-0870) to report an intrusion or to request either technical assistance or additional resources for incident response.  </i><o:p></o:p></span></p>


<span style="mso-bookmark:_Hlk92711608"></span>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><o:p> </o:p></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


</tbody>


</table>


<p class="MsoNormal"><span style="mso-bookmark:_Hlk92711608"><o:p> </o:p></span></p>


<p class="MsoNormal"><span style="mso-bookmark:_Hlk92711608"><span style="color:#1F497D"><o:p> </o:p></span></span></p>


<p class="MsoNormal"><span style="mso-bookmark:_Hlk92711608"><o:p> </o:p></span></p>


<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" align="left" style="border-collapse:collapse;margin-left:6.75pt;margin-right:6.75pt">


<tbody>


<tr>


<td width="623" valign="top" style="width:467.5pt;padding:0in 5.4pt 0in 5.4pt"><span style="mso-bookmark:_Hlk92711608"></span>


<p class="MsoNormal" style="mso-element:frame;mso-element-frame-hspace:9.0pt;mso-element-wrap:around;mso-element-anchor-vertical:paragraph;mso-element-anchor-horizontal:column;mso-height-rule:exactly">


<span style="mso-bookmark:_Hlk92711608"><o:p> </o:p></span></p>


</td>


<span style="mso-bookmark:_Hlk92711608"></span>


</tr>


</tbody>


</table>


<p class="MsoNormal"><br clear="all">


<o:p></o:p></p>


<p class="MsoNormal"><b><span style="color:#1F497D">Theresa A. Masse<o:p></o:p></span></b></p>


<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Cyber Security Advisor, Region 10 (Oregon)


<o:p></o:p></span></p>


<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Cybersecurity and Infrastructure Security Agency<o:p></o:p></span></p>


<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Department of Homeland Security<o:p></o:p></span></p>


<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Phone: (503) 930-5671


<o:p></o:p></span></p>


<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Email:</span><span style="font-size:10.0pt;color:#777777">


</span><a href="mailto:theresa.masse@cisa.dhs.gov"><span style="font-size:10.0pt">theresa.masse@cisa.dhs.gov</span></a><u><span style="font-size:10.0pt;color:#0760C1"><o:p></o:p></span></u></p>


<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>


<p class="MsoNormal"><img border="0" width="97" height="97" style="width:1.0138in;height:1.0138in" id="Picture_x0020_3" src="cid:image004.png@01D80C6F.CA1A6420"><span style="color:#1F497D"><o:p></o:p></span></p>


<p class="MsoNormal"><o:p> </o:p></p>


<p class="MsoNormal"><o:p> </o:p></p>


<p class="MsoNormal"><o:p> </o:p></p>


</div>


</body>


</html>