CISA released two Industrial Control Systems (ICS) advisories on February 1, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-032-01 Gessler GmbH WEB-MASTER ICSA-24-032-03 AVEVA Edge products (formerly known as InduSoft Web Studio) CISA encourages users and administrators to review…
Apple ha rilasciato aggiornamenti di sicurezza per sanare molteplici vulnerabilità che interessano i propri prodotti. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA is releasing this alert to provide cyber defenders with new mitigations to defend against threat actors exploiting Ivanti Connect Secure and Policy Secure Gateways vulnerabilities in Ivanti devices (CVE-2023-46805 and CVE-2024-21887). Threat actors are continuing to leverage vulnerabilities in Ivanti Connect Secure and…
È stata recentemente rilevata da questo CSIRT una nuova tecnica di distribuzione di codice malevolo tramite campagne di malspam a tema OneDrive. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Cisco released a security advisory to address a vulnerability (CVE-2024-20253) affecting multiple Unified Communications Products. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the Cisco Unified Communications Products Remote Code Execution Vulnerability advisory…
Rilasciati aggiornamenti di sicurezza che risolvono diverse vulnerabilità, di cui una con gravità “critica”, in GitLab Community Edition (CE) e Enterprise Edition (EE). Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Today, CISA published Guidance on Assembling a Group of Products created by the Software Bill of Materials (SBOM) Tooling & Implementation Working Group, one of the five SBOM community-driven workstreams facilitated by CISA. CISA’s community-driven working groups publish documents and reports to advance and refine SBOM and…
Rilasciato il Jenkins Security Advisory di gennaio che risolve 2 vulnerabilità, di cui una con gravità “critica”, in Jenkins (Core) weekly e LTS. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
