Recently Sitecore published security bulletin which addresses vulnerabilities in Sitecore software which lead to remote code execution vulnerability and non-authorized access to information.
There are two solutions provided by Sitecore, Permanent and Temporary, Important thing to note here is that this vulnerability also impact Sitecore version 8 i.e (8.2 rev. 160729 (Initial Release)) which has already entered Sustaining Support Phase– so, we can apply Temporary solution to fix the issue, Sitecore however recommends upgrading to the later versions and applying the corresponding hotfix.
Full details around Sitecore Product Support Lifecycle can be found here- https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB0641167
So, if you are in Sitecore version 8 and above, you can plan to apply the fixes as soon as possible, for more details on this Security bulletin please visit Sitecore support page- https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003018
Also, to get latest information regarding Security bulletin from Sitecore , visit https://support.sitecore.com/kb and Subscribe for Security Bulletin.
Hope this helps.
Happy learning 🙂
Ankit Joshi's Sitecore Blog 