Third-Party Patch Update: April 2018

Cisco Patches Vulnerability in WebEx

Cisco has just released a CVSS 9 rated update for its WebEx software. In their own words, the unpatched vulnerability “could allow an authenticated, remote attacker to execute arbitrary code on a targeted system.”

The malicious party would share a Flash file via WebEx’s sharing capabilities to gain control of targeted devices.

So what is the best option here? We recommend rolling out the update or removing WebEx. Syxsense can facilitate whichever approach is best for your situation.Our patch management solution can easily identify which devices are running the WebEx software. From there, setting up a task to deploy the updates is incredibly straight forward.

If you decide to remove WebEx, it’s almost exactly the same process, but at the last step, you select “Uninstall” instead of ‘Install.”Use an IT management solution that works with you, not against you. Syxsense offers a simple, but powerful approach to patching. Automatically keeps desktops, laptops and remote users up-to-date with patches and software updates.

Start a free trial of Syxsense today.

Third-Party Patch Updates

Below is a table of third-party updates from April 2018:

Vendor Category Patch Version and Release Notes: CVSS SCORE
Adobe Media Software  

ActiveX: v29.0.0.140 –


Flash Player Plugin NPAPI: v29.0.0.140 –


Flash Player Plugin PPAPI: v29.0.0.140 –




Evernote Corporation  

Evernote: v6.11.2.7027 –


FileZilla FTP Solution v3.32 –


Google Browser  

Chrome: v66.0.3359.117 –






Malwarebytes: v3.4.5.2467 –



JavaJRE and JDK: v8u172 –


Wireshark Network Protocol Analyzer  

2.4.6 –