Dlive

**Name of the Vulnerable Software and Affected Versions** Microsoft Exchange Server (affected versions not specified) **Description** The issue is related to insufficient access controls in Microsoft Exchange Server, which can be exploited by a remote attacker to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DCOM Server (affected versions not specified) **Description** The vulnerability in the Windows DCOM Server is related to errors in security settings, allowing a remote attacker to bypass authentication procedures and elevate their privileges. This issue can affect the system, potentially leading to security breaches. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.15.5 Security Update versions prior to 2020-003 Mojave Security Update versions prior to 2020-003 High Sierra **Description** The issue existed in the parsing of URLs, which could allow a malicious website to exfiltrate autofilled data in Safari. This was addressed with improved input validation. **Recommendations** For macOS versions prior to 10.15.5, update to macOS Catalina 10.15.5. For Security Update versions prior to 2020-003 Mojave, apply Security Update 2020-003 Mojave. For Security Update versions prior to 2020-003 High Sierra, apply Security Update 2020-003 High Sierra.