Siemens has released an out-of-band update for the SIMANTIC WinCC SCADA system, which is integrated in its PCS7 distributed control system and its TIA Portal, engineering software for SIMATIC products that is deployed across several industrial sectors primarily in the US and Europe.
For the second time in a month, Adobe has issued a security update for Flash Player.
If you're using Docker, the open source platform for building, shipping and running distributed applications on almost any platform, be sure to update to the latest version (v1.3.2), as all previous ones sport a critical bug that can be misused by an attacker to gain elevated privileges execute malicious code remotely.
Microsoft has shared more details about the critical elevation of privilege bug found in Microsoft Windows Kerberos Key Distribution Center (CVE-2014-6324) which is being exploited in "limited, targeted attacks" in the wild, and has once again urged admins and users to apply the issued patch.
More than a year and a half after they have been reported to SAP AG, the company has issued a patch for a number of critical exploitable security vulnerabilities in its Governance, Risk and Compliance (GRC) software.