Original release date: October 13, 2022 CISA has released twenty-five (25) Industrial Control Systems (ICS) advisories on October 13, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS…
Rilevata vulnerabilità con gravità “critica” nella nota libreria Apache Commons Text. Tale vulnerabilità, qualora sfruttata, potrebbe permettere ad un utente malintenzionato remoto l’esecuzione di codice sui dispositivi interessati. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: October 14, 2022 CISA has released RedEye, an interactive open-source analytic tool to visualize and report Red Team command and control activities. RedEye allows an operator to quickly assess complex data, evaluate mitigation strategies, and enable effective decision making. For more information,…
Rilasciati aggiornamenti e mitigazioni per sanare alcune vulnerabilità riscontrate nel software Zimbra Collaboration, tra le quali la CVE-2022-41352 – trattata tramite l’alert AL02/221010/CSIRT-ITA – inerente alla componente “cpio” utilizzata dal software di sicurezza integrato nella suite denominato “Amavis”. Source link Author: csirt@alfacert.gov.it Article used for…
Original release date: October 11, 2022 | Last revised: October 12, 2022 Adobe has released security updates to address multiple vulnerabilities in Adobe software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to…
Aggiornamenti di sicurezza risolvono una vulnerabilità in OpenSSL che potrebbe permettere l’accesso a informazioni sensibili presenti sui sistemi interessati. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: October 6, 2022 Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA encourages…
Rilevata una vulnerabilità, identificata tramite la CVE-2022-41352 presente in Zimbra Collaboration Suite (ZCS) nelle versioni 8.8.15 e 9.0 che potrebbe permettere il caricamento di file arbitrari sui dispositivi interessati. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
