Archive for Cybersecurity - page 112

Ott302023

La Settimana Cibernetica del 29 ottobre 2023

Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 23 al 29 ottobre 2023. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Ott282023

CISA Announces Launch of Logging Made Easy

Today, CISA announces the launch of a new version of Logging Made Easy (LME), a straightforward log management solution for Windows-based devices that can be downloaded and self-installed for free. CISA’s version reimagines technology developed by the United Kingdom’s National Cyber Security Centre (NCSC), making it available…

Continue reading →

Ott282023

Rilevato sfruttamento in rete della CVE-2023-5631 relativa a Roundcube (AL03/231027/CSIRT-ITA)

Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2023-5631 – già sanata dal vendor – che interessa il prodotto Roundcube Webmail, noto gestore di posta elettronica open source. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.

Continue reading →

Ott262023

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems (ICS) advisories on October 26, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-299-01 Dingtian DT-R002 ICSA-23-299-02 Centralite Pearl Thermostat ICSA-23-299-03 Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium ICSA-23-299-04 Rockwell Automation Arena ICSA-23-299-05…

Continue reading →

Ott262023

Vulnerabilità in prodotti NextGen HealthCare (AL03/231026/CSIRT-ITA)

Rilevata una vulnerabilità nel prodotto Mirth Connect di NextGen HealthCare, piattaforma open source di integrazione dati utilizzata tipicamente in ambito sanitario. Tale vulnerabilità, qualora sfruttata, potrebbe permettere a un utente malintenzionato remoto l’esecuzione di codice arbitrario sui prodotti target. Source link Author: csirt@pec.acn.gov.it Article used…

Continue reading →

Ott242023

CISA Releases One Industrial Control Systems Advisory

CISA released one Industrial Control Systems (ICS) advisory on October 24, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS.  ICSA-23-297-01 Rockwell Automation Stratix 5800 and Stratix 5200 CISA encourages users and administrators to review the newly released ICS…

Continue reading →

Ott242023

Rilevata criticità nel prodotto ServiceNow (AL02/231023/CSIRT-ITA)

È stata recentemente rilevata una criticità nel prodotto ServiceNow, piattaforma per la gestione dei flussi di lavoro digitali per le operazioni aziendali. Tale criticità deriva da una particolare configurazione delle Access Control List (ACL) che potrebbe permettere l’accesso a informazioni sensibili presenti sui sistemi target….

Continue reading →

Ott222023

CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities

Today, CISA, in response to active, widespread exploitation, released guidance addressing two vulnerabilities, CVE-2023-20198 and CVE-2023-20273, affecting Cisco’s Internetworking Operating System (IOS) XE Software Web User Interface (UI). An unauthenticated remote actor could exploit these vulnerabilities to take control of an affected system. Specifically, these…

Continue reading →

Page 112 of 169 ← First ... 110 111 112 113 114 ... Last →