Hello and welcome to the Thursday, October 13th, 22 edition of the Sands and Storm Center's Stormcast.

My name is Johannes Orich, and I'm recording from Riyadh, Saudi Arabia.

After recording yesterday's podcast, Adobe, of course, did release some patched Tuesday updates. After

all, the updates are addressing vulnerabilities in Acrobat Reader, Colfusion, Commerce, and Dimension.

For Coldfusion, four of the vulnerabilities that they are patching here, have a CVSS score of 9.8.

Now, Adobe Commerce and Magento, there is a cross-site scripting vulnerability with a perfect CVSS score of 10.0.

Apply the patches soon, but Adobe does not consider an exploit for any of the patches likely soon.

Horizon 3 published some details assisting 48 customers with the detection of CVE 22-4684 exploit attempts.

Now, this is the vulnerability that was patched on Friday after

Fortigate detected the vulnerability being exploited in the wild. Make sure that you are updating.

Horizon 3 has not yet included details how to exploit this vulnerability, but they did promise

proof-of-concept exploit for later this week in a separate blog post, so it's certainly coming.

There are additional vulnerabilities that Fortigate patched today, they include some authenticated

code execution flaws in the patch for a weakness in the authentication of brute force detection.

Nothing quite as critical as the one released on Friday, but keep your 48 devices updated.

And VPN service Mulvad VPN published blog post outlining how some traffic does escape

a VPN connection on Android, even if the block connections without VPN feature is selected.

The issue here appears to be a little bit more of a documentation issue

where maybe that setting should be clarified a bit,

but the traffic that's not using the VPN, for example, is connectivity checks.

This tends to be a little bit tricky with devices in particular, like

myself, for example, I know at a hotel. There is often sort of a portal that I have to log in

...