I suggest you collate an inventory of all your vendors/suppliers and commence communicating with them directly.  This will give you a pretty good idea on how proactive they are and also the timeline and quality of advice provide by each supplier.

I definitely recommend keeping an eye out on regular updates.  If I find any further information, I will endeavour to post it for all and sundry.

Sorry, but I can't see the image.

Best regards,

Hackers would first need to install malicious software on your computer in order to take advantage of these flaws.

That means they need to select their targets and hack each one of them before running a sophisticated attack to steal a computer's sensitive information.

Consequently, we have to have stroung computer security implemented and the malicious software will not enter your system...

The threat actor doesn't need to install malware on an endpoint to take advantage of the the vulnerabilities. Functional JavaScript PoCs exist which exercises the bug. This means that the attack can be delivered via drive-by exploitation when a browser visits a site serving a malicious payload.

Firefox and Chrome javascript engines have been patched, so if you have the latest you should be fine. I'm not sure about other browsers/jscript engines. It is likely Microsoft and Apple have also taken necessary steps.

So, endpoints may have exposure to the issue in this fashion. Your own servers are likely fine, but anything in a multi-tenant, public cloud is another story as an attacker could get a VM instance on the same physical host as yours and if the hypervisor host is vulnerable, it can be a major issue in terms of disclosure.