Patches for Apache and VMware, and October Patch Tuesday

This month we look at patches from Apache and VMware, an example of very rapid response to a researcher’s findings, and another quiet month from Microsoft’s Patch Tuesday, with guests Claire Tills and Satnam Narang from Tenable's Security Response Team.

• CVE-2021-22005: Critical File Upload Vulnerability in VMware vCenter Server
• CVE-2021-41773: Path Traversal Zero-Day in Apache HTTP Server Exploited
• Microsoft’s October 2021 Patch Tuesday Addresses 74 CVEs (CVE-2021-40449)
• CVE-2021-34527: Microsoft Releases Out-of-Band Patch for PrintNightmare Vulnerability in Windows Print Spooler
• CVE-2021-1675: Proof-of-Concept Leaked for Critical Windows Print Spooler Vulnerability
• The PrintNightmare Continues: Another Zero-Day in Print Spooler Awaits Patch (CVE-2021-36958)
• Finding Proxylogon and Related Microsoft Exchange Vulnerabilities: How Tenable Can Help

Follow along for more from Tenable Research:

• Subscribe to the blog
• Follow Tenable’s Zero Day team on Medium