CISA is releasing this alert to provide cyber defenders with new mitigations to defend against threat actors exploiting Ivanti Connect Secure and Policy Secure Gateways vulnerabilities in Ivanti devices (CVE-2023-46805 and CVE-2024-21887). Threat actors are continuing to leverage vulnerabilities in Ivanti Connect Secure and…
È stata recentemente rilevata da questo CSIRT una nuova tecnica di distribuzione di codice malevolo tramite campagne di malspam a tema OneDrive. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Cisco released a security advisory to address a vulnerability (CVE-2024-20253) affecting multiple Unified Communications Products. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the Cisco Unified Communications Products Remote Code Execution Vulnerability advisory…
Rilasciati aggiornamenti di sicurezza che risolvono diverse vulnerabilità, di cui una con gravità “critica”, in GitLab Community Edition (CE) e Enterprise Edition (EE). Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Today, CISA published Guidance on Assembling a Group of Products created by the Software Bill of Materials (SBOM) Tooling & Implementation Working Group, one of the five SBOM community-driven workstreams facilitated by CISA. CISA’s community-driven working groups publish documents and reports to advance and refine SBOM and…
Rilasciato il Jenkins Security Advisory di gennaio che risolve 2 vulnerabilità, di cui una con gravità “critica”, in Jenkins (Core) weekly e LTS. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Mozilla has released security updates to address vulnerabilities in Thunderbird and Firefox. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply the necessary updates: Thunderbird…
Apple ha rilasciato aggiornamenti di sicurezza per sanare 43 vulnerabilità nei propri prodotti. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
