Original release date: September 2, 2022 Mozilla has released security update to address a vulnerability in Thunderbird. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the Mozilla security advisory for Thunderbird 102.2.1 and apply the…
Aggiornamenti di sicurezza sanano 3 vulnerabilità – di cui una con gravità “alta” – nel noto CMS open source WordPress. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: August 29, 2022 | Last revised: August 30, 2022 CISA has released 12 Industrial Control Systems (ICS) advisories on August 30, 2022. These advisories provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators…
Rilasciati aggiornamenti di sicurezza che risolvono alcune vulnerabilità, di cui una con gravità “critica”, in GitLab Community Edition (CE) e Enterprise Edition (EE). Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: August 25, 2022 CISA has added ten new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view…
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 22 al 28 agosto 2022 Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: August 25, 2022 CISA has released 1 Industrial Control Systems (ICS) advisory on August 25, 2022. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory…
Disponibile un Proof of Concept (PoC) per la vulnerabilità CVE-2022-22715 – denominata “Windows Dirty Pipe” e già sanata da Microsoft nel Patch Tuesday di febbraio – che interessa il Named Pipe File System di Windows. La vulnerabilità, qualora sfruttata, potrebbe consentire a un utente malintenzionato…
