A weekly recap of pertinent security events you need to be aware of and can read in 7 seconds (or so...)

Using NVIDIA Jetson Chipsets?

Do this: Apply the latest software updates.
Why: NVIDIA has released software updates to address a total of 26 vulnerabilities impacting its Jetson system-on-module (SOM) series that could be exploited to escalate privileges and even lead to denial-of-service and information disclosure.
"Chief among the vulnerabilities is CVE-2021-34372 (CVSS score: 8.2), a buffer overflow flaw in its Trusty trusted execution environment (TEE) that could result in information disclosure, escalation of privileges, and denial-of-service."
Additional Info: https://thehackernews.com/2021/06/nvidia-jetson-chipsets-found-vulnerable.html

Using Cisco Small Business 220 Series Smart Switches?

Do this: Apply the latest Cisco patches.
Why: "Cisco has flagged and patched several high-severity security vulnerabilities in its Cisco Small Business 220 Series Smart Switches that could allow session hijacking, arbitrary code execution, cross-site scripting and HTML injection."
Additional Info: https://threatpost.com/cisco-smart-switches-security-holes/167031/


About the Author

Matt Barnett, CISSP, GFCA
Chief Strategist & Cofounder

After years in IT, performing network and system administration, software development, and architecting cloud migrations, Matt began to focus his efforts in cybersecurity. Matt draws on his technical competency and law enforcement background to assist clients, in both proactive and incident response capacities. In addition, Matt has developed an arsenal of applications, strategies, policies, and procedures to assist clients in achieving better cybersecurity.