Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 gennaio al 5 febbraio 2023: Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 30 gennaio al 5 febbraio 2023: Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: February 2, 2023 CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To…
Rilevato il massiccio sfruttamento attivo in rete della vulnerabilità CVE-2021–21974 – già sanata dal vendor nel febbraio 2021 – presente nei prodotti VMware ESXi. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: February 2, 2023 CISA released six Industrial Control Systems (ICS) advisories on February 2, 2023.These advisories provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical…
Rilasciati aggiornamenti di sicurezza per risolvere una vulnerabilità presente in Grafana, nota applicazione web per la visualizzazione e l’analisi interattiva di dati. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Original release date: February 1, 2023 VMware released a security update that addresses a cross-site request forgery bypass vulnerability affecting VMware vRealize Operations. A malicious user could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review VMware…
Risolte 3 vulnerabilità che interessano il prodotto Apache Portable Runtimes (APR), nota libreria di supporto per il server web di Apache. Tali vulnerabilità, qualora sfruttate, potrebbero comportale la compromissione della disponibilità del servizio e/o l’esecuzione di codice arbitrario sui dispositivi interessati. Source link Author: csirt@pec.acn.gov.it…
Original release date: January 26, 2023 CISA released eight Industrial Control Systems (ICS) advisories on January 26, 2023.These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical…