Apple released security updates for three products due to vulnerabilities found in them that in some cases are already being exploited and could lead to an attacker gaining control of affected systems.

Sources: CISA, Safari, macOS, iOS

CISA added 15 known exploited vulnerabilities to its Known Exploited Vulnerabilities Catalog.

Sources: CISA, Known Exploited Vulnerabilities Catalog

SAP released security updates for multiple products due to vulnerabilities that could lead to theft of sensitive data, financial fraud, disruption of mission-critical business processes, ransomware and halt of all operations.

Sources: SAP, CISA, Onapsis

Adobe released security updates for five products due to vulnerabilities found in them that could result in an attacker gaining control of affected systems.

Sources: Adobe, CISA

Citrix released security updates for Hypervisor to address vulnerabilities that could allow an attacker to cause a denial-of-service.

Sources: Citrix, CISA

Microsoft released security updates for Microsoft software due to vulnerabilities found that could allow an attacker gain control of affected systems.

Sources: Microsoft, CISA

Mozilla released security updates for Firefox, Firefox ESR and Thunderbird due to vulnerabilities found that could allow an attacker to gain control of affected systems.

Sources: Mozilla - Firefox 97, Mozilla - Firefox ESR 91.6, Mozilla - Thunderbird, CISA

The FBI released a Flash report containing indicators of compromise from attacks using LockBit 2.0, which is ransomware-as-a-service.

Sources: CISA, FBI