Zyxel rilascia aggiornamenti di sicurezza per sanare una vulnerabilità presente nel client SecuExtender SSL VPN. Tale vulnerabilità potrebbe consentire a un utente locale la possibilità di elevare i propri privilegi e l’esecuzione di comandi arbitrari sui sistemi interessati. Source link Author: csirt@pec.acn.gov.it Article used for…
Today, CISA released the Mitigation Guide: Healthcare and Public Health (HPH) Sector as a supplemental companion to the HPH Cyber Risk Summary, published July 19, 2023. This guide provides defensive mitigation strategy recommendations and best practices to combat pervasive cyber threats affecting this critical infrastructure…
Aggiornamenti di sicurezza WithSecure – precedentemente noto come F-Secure – risolvono una vulnerabilità di sicurezza nei prodotti di Endpoint Protection per Windows. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure Analytics. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Juniper advisory JSA74298 and apply the necessary…
Splunk ha rilasciato aggiornamenti di sicurezza per correggere 2 vulnerabilità, di cui una con gravità “alta” nei noti prodotti per l’analisi del traffico di rete Enterprise e Cloud Platform. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Today, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA), #StopRansomware: Rhysida Ransomware, to disseminate known Rhysida ransomware indicators of compromise (IOCs), detection methods, and tactics,…
Rilevate nuove vulnerabilità in alcuni prodotti Fortinet, di cui 2 con gravità “critica”. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-47246 SysAid Server Path Traversal Vulnerability CVE-2023-36844 Juniper Junos OS EX Series PHP External Variable Modification Vulnerability CVE-2023-36845 Juniper Junos OS EX Series and SRX Series PHP External Variable Modification Vulnerability…
