Cybersecurity Alert Level – courtesy of MS-ISAC


GREEN or LOW indicates a low risk. No unusual activity exists beyond the normal concern for known hacking activities, known viruses, or other malicious activity.

BLUE or GUARDED indicates a general risk of increased hacking, virus, or other malicious activity. The potential exists for malicious cyber activities, but no known exploits have been identified, or known exploits have been identified but no significant impact has occurred.

YELLOW or ELEVATED indicates a significant risk due to increased hacking, virus, or other malicious activity that compromises systems or diminishes service. At this level, there are known vulnerabilities that are being exploited with a moderate level of damage or disruption, or the potential for significant damage or disruption is high.

ORANGE or HIGH indicates a high risk of increased hacking, virus, or other malicious cyber activity that targets or compromises core infrastructure, causes multiple service outages, causes multiple system compromises, or compromises critical infrastructure. At this level, vulnerabilities are being exploited with a high level of damage or disruption, or the potential for severe damage or disruption is high.

RED or SEVERE indicates a severe risk of hacking, virus, or other malicious activity resulting in widespread outages and/or significantly destructive compromises to systems with no known remedy or debilitates one or more critical infrastructure sectors. At this level, vulnerabilities are being exploited with a severe level or widespread level of damage or disruption of Critical Infrastructure Assets.


Cybersecurity Advisories – courtesy of MS-ISAC

  • A Vulnerability in Apple iOS and iPadOS Could Allow for Arbitrary Code Execution.
    on October 12, 2021

    A Vulnerability in Apple iOS and iPadOS Could Allow for Arbitrary Code Execution. MS-ISAC ADVISORY NUMBER:2021-131 DATE(S) ISSUED:10/12/2021 OVERVIEW:A vulnerability has been discovered in iOS and iPadOS, which could allow for arbitrary code execution with kernel privileges. iOS and iPadOS are operating systems for Apple’s mobile devices including the iPhone, iPad, and iPod touch. Successful exploitation of this vulnerability would allow an attacker […]

  • Critical Patches Issued for Microsoft Products, October 12, 2021
    on October 12, 2021

    Critical Patches Issued for Microsoft Products, October 12, 2021 MS-ISAC ADVISORY NUMBER:2021-130 DATE(S) ISSUED:10/12/2021 OVERVIEW:Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts […]

  • Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
    on October 8, 2021

    Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution MS-ISAC ADVISORY NUMBER:2021-129 DATE(S) ISSUED:10/08/2021 OVERVIEW:Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the Internet. Successful exploitation of the most severe of these vulnerabilities could allow an attacker to execute arbitrary […]

  • Multiple Vulnerabilities in Mozilla Firefox and Could Allow for Arbitrary Code Execution
    on October 6, 2021

    Multiple Vulnerabilities in Mozilla Firefox and Could Allow for Arbitrary Code Execution MS-ISAC ADVISORY NUMBER:2021-128 DATE(S) ISSUED:10/06/2021 OVERVIEW:Multiple vulnerabilities have been discovered in Mozilla Firefox and Firefox Extended Support Release (ESR), the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Mozilla Firefox ESR is a version of the web browser intended […]

  • A Vulnerability in Apache HTTP Server Could Allow for a Path Traversal Attack
    on October 5, 2021

    A Vulnerability in Apache HTTP Server Could Allow for a Path Traversal Attack MS-ISAC ADVISORY NUMBER:2021-127 DATE(S) ISSUED:10/05/2021 OVERVIEW:A vulnerability has been discovered in Apache HTTP Server, which could allow for a path traversal attack. Apache HTTP Server is an open-source, cross-platform web server for Unix and Windows. Successful exploitation allows threat actors to map URLs to files outside the expected document root by launching a […]

  • Multiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution
    on October 4, 2021

    Multiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution MS-ISAC ADVISORY NUMBER:2021-126 DATE(S) ISSUED:10/04/2021 OVERVIEW:Multiple vulnerabilities have been discovered in the Google Android operating system (OS), the most severe of which could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful […]

  • Multiple Vulnerabilities in SiemensSolid Edge Could Allow for Arbitrary Code Execution
    on October 1, 2021

    Multiple Vulnerabilities in SiemensSolid Edge Could Allow for Arbitrary Code Execution MS-ISAC ADVISORY NUMBER:2021-125 DATE(S) ISSUED:10/01/2021 OVERVIEW:Multiple vulnerabilities have been discovered in SiemensSolid Edge, the most severe of which could allow an attacker to cause an arbitrary code execution. Siemens Edge is a portfolio of software tools that addresses various product development processes: 3D design, simulation, manufacturing and […]

  • Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
    on September 30, 2021

    Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution MS-ISAC ADVISORY NUMBER:2021-124 DATE(S) ISSUED:09/30/2021 OVERVIEW:Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the Internet. Successful exploitation of the most severe of these vulnerabilities could allow an attacker to execute arbitrary […]

  • Multiple Vulnerabilities in Microsoft Edge Could Allow for Arbitrary Code Execution
    on September 28, 2021

    Multiple Vulnerabilities in Microsoft Edge Could Allow for Arbitrary Code Execution MS-ISAC ADVISORY NUMBER:2021-123 DATE(S) ISSUED:09/28/2021 OVERVIEW:Multiple vulnerabilities have been discovered in Microsoft Edge, the most severe of which could result in remote code execution. Microsoft Edge is a Chromium based internet browser made by Microsoft, which is installed by default on all new Windows computers. Edge was made to replace Internet Explorer, […]

  • A Vulnerability in SonicWall SMA 100 Series Could Allow for Arbitrary File Deletion
    on September 27, 2021

    A Vulnerability in SonicWall SMA 100 Series Could Allow for Arbitrary File Deletion MS-ISAC ADVISORY NUMBER:2021-122 DATE(S) ISSUED:09/27/2021 OVERVIEW:A vulnerability has been discovered in SonicWall SMA100 Series that could allow for arbitrary file deletion. The SonicWall SMA 100 Series is a unified secure access gateway that enables organizations to provide access to any application, anytime, from anywhere and any devices, including managed and […]