On May 6 , 2022, the Health Sector Cybersecurity Coordination Center (HC3) shared a report "April 2022 Vulnerability Bulletin" regarding vulnerabilities impacting information systems relevant to the health sector. This includes the monthly Patch Tuesday vulnerabilities released by several vendors on the second Tuesday of each month, along with mitigation steps and/or patches. Vulnerabilities for this month are from Microsoft, Adobe, Android, Google, Apple, CISCO, Mozilla, Oracle, SAP, SonicWall, and VMWare.
HC3 recommends patching for all vulnerabilities with special consideration to each vulnerability criticality category against the risk management posture of the organization. As always, accountability, proper inventory management and device hygiene along with asset tracking are imperative to an effective patch management program.
Please see the attached report for details or search the Doc Library under Government > HC3 > HC3 Monthly Cybersecurity Vulnerability Bulletin.
View the detailed report below.