Drupal Releases Security Update to Address a Vulnerability in Apigee Edge

This article is contributed. See the original author and article here.

Drupal released a security update to address a vulnerability affecting the Apigee Edge module for Drupal 9.x. An attacker could exploit this vulnerability to bypass access authorization or disclose sensitive information.

CISA encourages users and administrators to review Drupal’s security advisory SA-CONTRIB- 2023-005 and apply the necessary update.

VMware Releases Security Update for VMware vRealize Operations

This article is contributed. See the original author and article here.

VMware released a security update that addresses a cross-site request forgery bypass vulnerability affecting VMware vRealize Operations. A malicious user could exploit this vulnerability to take control of an affected system.

CISA encourages users and administrators to review VMware Security Advisory VMSA-2023-0002 and apply the necessary updates.