Blog – Pagina 84 – Luca Donetti Dontin

Set232024

Ivanti Releases Admin Bypass Security Update for Cloud Services Appliance

in Cybersecurity
Tagged with Cisa

Ivanti has released a security update to address an admin bypass vulnerability (CVE-2024-8963) affecting Ivanti Cloud Services Appliance (CSA) version 4.6. A cyber threat actor could exploit this vulnerability in conjunction with CVE-2024-8190–detailed in a Sept. 13 Ivanti security advisory–to take control of an affected…

Continue reading →

Set232024

Risolte vulnerabilità in Google Chrome (AL03/240822/CSIRT-ITA) – Aggiornamento

in Cybersecurity
Tagged with csirt

Google ha rilasciato un aggiornamento per il browser Chrome al fine di correggere 37 vulnerabilità di sicurezza, di cui 6 con gravità “alta”. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Set212024

Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-45229

in Cybersecurity
Tagged with Cisa

Versa Networks has released an advisory for a vulnerability (CVE-2024-45229) affecting Versa Director. A cyber threat actor could exploit this vulnerability to exercise unauthorized REST APIs. CISA urges organizations to apply necessary updates, hunt for any malicious activity, report any positive findings to CISA, and…

Continue reading →

Set212024

Molteplici vulnerabilità in vari prodotti Veeam (AL02/240906/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Veeam ha reso noto, tramite un bollettino di sicurezza, la presenza di molteplici vulnerabilità in alcuni dei suoi prodotti, di cui 5 con gravità “critica”. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Set192024

Fortinet Recognized as a 2024 Gartner® Peer Insights™ Customers’ Choice for Enterprise Wired and Wireless LAN Infrastructure for 7th Consecutive Year

in Cybersecurity, Fortinet
Tagged with Fortinet

Fortinet received an overall 4.9 out of 5-star customer rating based on 395 customer reviews submitted as of August 2024. Learn more. Source link Author: Fortinet Article used for cyber security disclosure.

Continue reading →

Set192024

CISA Adds Five Known Exploited Vulnerabilities to Catalog

in Cybersecurity
Tagged with Cisa

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-27348 Apache HugeGraph-Server Improper Access Control Vulnerability CVE-2020-0618 Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability CVE-2019-1069 Microsoft Windows Task Scheduler Privilege Escalation Vulnerability CVE-2022-21445 Oracle JDeveloper Remote…

Continue reading →

Set192024

Aggiornamenti per Ruby-SAML (AL05/240918/CSIRT-ITA)

in Cybersecurity
Tagged with csirt

Rilevata vulnerabilità – già risolta dal vendor – che interessa la libreria ruby-saml del noto linguaggio di programmazione Ruby, tipicamente utilizzata per implementare le modalità di autorizzazione SAML lato client. Tale vulnerabilità, qualora sfruttata, potrebbe consentire, a un attaccante non autenticato, di bypassare i meccanismi…

Continue reading →

Set192024

Affordable Enterprise-Grade Cybersecurity Solutions for SMBs

in Cybersecurity, Fortinet
Tagged with Fortinet

Fortinet offers a broad range of next-gen firewalls tailored for enterprises and small businesses. Learn about the latest FortiGate 30G in Fortinet’s NGFW portfolio. Source link Author: Fortinet Article used for cyber security disclosure.

Continue reading →