Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia 20 al 26 maggio 2024. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia 20 al 26 maggio 2024. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Cisco released a bundled publication for security advisories that address vulnerabilities in Cisco Adaptive Security Appliance (ASA), Firepower Management Center (FMC), and Firepower Threat Defense (FTD) software. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. Users…
CISA released one Industrial Control Systems (ICS) advisory on May 23, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-144-01 AutomationDirect Productivity PLCs CISA encourages users and administrators to review newly released ICS advisories for technical details and…
Disponibile un Proof of Concept (PoC) per la CVE-2024-21683 – già sanata dal vendor – presente in Atlassian Confluence Data Center and Server. Tale vulnerabilità, qualora sfruttata, potrebbe permettere l’esecuzione di codice da remoto sui dispositivi interessati. Source link Author: csirt@pec.acn.gov.it Article used for cyber…
CISA released one Industrial Control Systems (ICS) advisory on May 21, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-142-01 LCDS LAquis SCADA CISA encourages users and administrators to review newly released ICS advisories for technical details and…
Zyxel rilascia aggiornamenti di sicurezza per sanare 2 vulnerabilità presenti in molteplici prodotti di rete. Tali vulnerabilità potrebbero permettere la compromissione della disponibilità del servizio sui dispositivi target. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2014-100005 D-Link DIR-600 Router Cross-Site Request Forgery (CSRF) Vulnerability CVE-2021-40655 D-Link DIR-605 Router Information Disclosure Vulnerability CVE-2024-4761 Google Chromium V8 Out-of-Bounds Memory Write Vulnerability These types of vulnerabilities…
Aggiornamenti di sicurezza per Git – noto software open source per il controllo delle versioni distribuito – risolvono alcune vulnerabilità, di cui una con gravità “alta” che interessa le modalità di clonazione tramite archivio “.zip”. dei progetti appartenenti ad altri utenti. Source link Author: csirt@pec.acn.gov.it…
