Zero-Day Coverage Update – Week of July 9, 2018
Earlier this week, I wrote a blog covering a couple of the statistics from the Zero Day Initiative’s (ZDI) first half of 2018. One of the stats that I didn’t cover is the increasing focus on enterprise applications. The team is seeing consistent growth in submissions of Microsoft and Apple vulnerabilities, but now they’re also seeing an increase of submissions in virtualization software vulnerabilities from the likes of VMware and Oracle. With a 33% increase in published advisories compared to 2017, the ZDI has their hands full. With more than 500 new researchers registering to participate in the program this year, the internal ZDI team is growing as well to accommodate this growth. 2018 may just be the biggest year yet for ZDI!
In case you missed it, you can read Brian Gorenc’s blog covering the detailed stats from the ZDI’s first half of 2018.
Microsoft Security Updates
This week’s Digital Vaccine® (DV) package includes coverage for Microsoft updates released on or before July 10, 2018. It was another big month for Microsoft with 53 security patches covering both browsers (Internet Explorer, Edge), ChakraCore, Windows, .NET Framework, ASP.NET, PowerShell, Visual Studio, and Microsoft Office and Office Services. Of these 53 CVEs, 18 are listed as Critical, 33 are rated Important, one is rated as Moderate, and one is rated as Low in severity.
Five CVEs in this month’s Microsoft update came through the Zero Day Initiative:
The following table maps Digital Vaccine filters to Microsoft’s updates. You can get more detailed information on this month’s security updates from Dustin Childs’ July 2018 Security Update Review from the Zero Day Initiative:
CVE # | Digital Vaccine Filter # | Status |
CVE-2018-0949 | 32494 | |
CVE-2018-8125 | 32486 | |
CVE-2018-8171 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8172 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8202 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8206 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8222 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8232 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8238 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8242 | 32487 | |
CVE-2018-8260 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8262 | 32491 | |
CVE-2018-8274 | 32492 | |
CVE-2018-8275 | 32493 | |
CVE-2018-8276 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8278 | 32358 | |
CVE-2018-8279 | 32359 | |
CVE-2018-8280 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8281 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8282 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8283 | 32361 | |
CVE-2018-8284 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8286 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8287 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8288 | 32488 | |
CVE-2018-8289 | 32490 | |
CVE-2018-8290 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8291 | 32360 | |
CVE-2018-8294 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8296 | 32478 | |
CVE-2018-8297 | 32551 | |
CVE-2018-8298 | 32479 | |
CVE-2018-8299 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8300 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8301 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8304 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8305 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8306 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8307 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8308 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8309 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8310 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8311 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8312 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8313 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8314 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8319 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8323 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8324 | 32558 | |
CVE-2018-8325 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8326 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8327 | Vendor Deemed Reproducibility or Exploitation Unlikely | |
CVE-2018-8356 | Vendor Deemed Reproducibility or Exploitation Unlikely |
Zero-Day Filters
There is one new zero-day filter covering one vendor in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative website. You can also follow the Zero Day Initiative on Twitter @thezdi and on their blog.
Advantech (1)
|
|
Missed Last Week’s News?
Catch up on last week’s news in my weekly recap.
Read More HERE