On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software. Exploitation of some of these vulnerabilities may allow a malicious cyber actor to take control of an affected system. CISA urges organizations to review Adobe ColdFusion security bulletin APSB23-52 for more…
Zoho ha rilasciato un bollettino di sicurezza per descrivere una vulnerabilità con gravità “alta” – identificata tramite la CVE-2023-48646 e già sanata dal vendor – presente nel prodotto RecoveryManager Plus. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-325-01 WAGO PFC200 Series ICSA-23-325-02 Fuji Electric Tellus Lite V-Simulator ICSA-23-208-03 Mitsubishi Electric CNC Series (Update C) ICSA-23-115-01 Keysight…
Zyxel rilascia aggiornamenti di sicurezza per sanare una vulnerabilità presente nel client SecuExtender SSL VPN. Tale vulnerabilità potrebbe consentire a un utente locale la possibilità di elevare i propri privilegi e l’esecuzione di comandi arbitrari sui sistemi interessati. Source link Author: csirt@pec.acn.gov.it Article used for…
Today, CISA released the Mitigation Guide: Healthcare and Public Health (HPH) Sector as a supplemental companion to the HPH Cyber Risk Summary, published July 19, 2023. This guide provides defensive mitigation strategy recommendations and best practices to combat pervasive cyber threats affecting this critical infrastructure…
Aggiornamenti di sicurezza WithSecure – precedentemente noto come F-Secure – risolvono una vulnerabilità di sicurezza nei prodotti di Endpoint Protection per Windows. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure Analytics. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Juniper advisory JSA74298 and apply the necessary…
Splunk ha rilasciato aggiornamenti di sicurezza per correggere 2 vulnerabilità, di cui una con gravità “alta” nei noti prodotti per l’analisi del traffico di rete Enterprise e Cloud Platform. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
