CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-7024 Google Chromium WebRTC Heap Buffer Overflow Vulnerability CVE-2023-7101 Spreadsheet::ParseExcel Remote Code Execution Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks…
Google ha rilasciato gli aggiornamenti di sicurezza di dicembre per sanare molteplici vulnerabilità che interessano il sistema operativo Android, di cui 3 con gravità “critica”. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA released three Industrial Control Systems (ICS) advisories on January 4, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-004-01 Rockwell Automation FactoryTalk Activation ICSA-24-004-02 Mitsubishi Electric Factory Automation Products ICSA-23-348-15 Unitronics Vision and Samba Series (Update A)…
Google ha rilasciato un aggiornamento per il browser Chrome al fine di correggere 6 vulnerabilità di sicurezza, di cui 4 con gravità “alta”. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure Analytics. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Juniper advisory JSA75636 and apply the necessary updates….
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 25 al 31 dicembre 2023. Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
CISA released seven Industrial Control Systems (ICS) advisories on December 19, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-353-01 Subnet Solutions Inc. PowerSYSTEM Center ICSA-23-353-02 EFACEC BCU 500 ICSA-23-353-03 EFACEC UC 500E ICSA-23-353-04 Open Design Alliance Drawing…
Juniper Networks rilascia aggiornamenti di sicurezza per sanare molteplici vulnerabilità, di cui 2 con gravità “critica”, nel SIEM Juniper Secure Analytics (JSA). Source link Author: csirt@pec.acn.gov.it Article used for cyber security disclosure.
