Original release date: August 25, 2022 CISA has added ten new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view…
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 22 al 28 agosto 2022 Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: August 25, 2022 CISA has released 1 Industrial Control Systems (ICS) advisory on August 25, 2022. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory…
Disponibile un Proof of Concept (PoC) per la vulnerabilità CVE-2022-22715 – denominata “Windows Dirty Pipe” e già sanata da Microsoft nel Patch Tuesday di febbraio – che interessa il Named Pipe File System di Windows. La vulnerabilità, qualora sfruttata, potrebbe consentire a un utente malintenzionato…
Original release date: August 25, 2022 Cisco has released security updates for vulnerabilities affecting ACI Multi-Site Orchestrator, FXOS, and NX-OS software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security…
Aggiornamenti di sicurezza Cisco sanano 4 vulnerabilità in vari prodotti Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: August 23, 2022 VMware has released a security update to address a vulnerability in Tools. A remote attacker could likely exploit the vulnerability to take control of an affected system. CISA encourages users and administrators to review VMware Security Advisory VMSA-2022-0024 and…
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 15 al 21 agosto 2022 Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
