□ 개요
o
`20년 보안공지
된 취약점 중 업데이트 적용에 대한 재확인이 필요한 주요 취약점 리스트
※ 미국 NSA 발표, 랜섬웨어 유포에 악용된 취약점 등 이슈화 된 취약점
선정
□ 주요 내용
[참고사이트]
[1]
tools.cisco.com/security/center/Content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-comm-inject
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35237
[2] www.citrix.com/downloads/citrix-adc
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35250
[3]
https://tools.cisco.com/security/center/content/CiscoSecurity/Advisory/cisco-sa-treck-ip-stack-JyBQ5GyC
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35460
[4]
ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/019_smtpd_exec.patch.sig
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35253
[5]
https://portal.msrc.microsoft.com/ko-KR/security-guidance/advisory/CVE-2020-0674
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35267
[6]
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0688
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35291
[7]
https://portal.msrc.microsoft.com/ko-kr/security-guidance/advisory/CVE-2020-0796
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35297
[8]
nvd.nist.gov/vuln/detail/CVE-2019-14287#vulnCurrentDescriptionTitle
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35469
[9]
https://portal.msrc.microsoft.com/ko-kr/security-guidance/advisory/CVE-2020-1472
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35747
[10] https://www.vmware.com/security/advisories/VMSA-2020-0003.html
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35274
[11] https://www.vmware.com/security/advisiories/VMSA-2020-0006.html
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35336
[12] tomcat.apache.org/security-7.html
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35292
[13] www.jiransecurity.com
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35378
[14]
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35704
[15] zoom.us/download
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35445
[16] https://support.citrix.com/article/CTX277662
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35533
[17] https://www.teamviewer.com/ko/download/windows/?category.id=en
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35552
[18]
https://blog.trendmicro.com/trendlabs-security-intelligence/new-mirai-variant-expands-arednal-exploits-cve-2020-10173
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35513
[19] https://support.hp.com/us-en/document/c06097712
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35720
[20]
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35732
[21]
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35794
[22]
https://downloads.solarwinds.com/solarwinds/Support/SupernovaMitigation.zip
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35857