Archive for Cybersecurity - page 161

Lug122022

Vulnerabilità in prodotti Schneider Electric (AL01/220712/CSIRT-ITA)

Sanate nuove vulnerabilità in alcuni dispositivi – anche SCADA – di Schneider Electric, di cui 5 con gravità “alta”. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.

Continue reading →

Lug112022

North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector

Original release date: July 6, 2022 CISA, the Federal Bureau of Investigation (FBI), and the Department of the Treasury (Treasury) have released a joint Cybersecurity Advisory (CSA), North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector, to provide…

Continue reading →

Lug102022

Rilevata vulnerabilità in Apache Commons Configuration (AL01/220708/CSIRT-ITA)

Rilevata vulnerabilità con gravità “critica” – di tipo “improper input validation” e già sanata dal vendor – in Apache Commons Configuration. Tale vulnerabilità, qualora sfruttata, potrebbe permettere ad un utente malintenzionato remoto l’esecuzione di codice arbitrario e/o la divulgazione di informazioni sensibili. Source link Author:…

Continue reading →

Lug092022

Cisco Releases Security Updates for Multiple Products

Original release date: July 7, 2022 Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page….

Continue reading →

Lug082022

PoC pubblico per lo sfruttamento della CVE-2022-34265 (AL02/220707/CSIRT-ITA)

Disponibile un Proof of Concept (PoC) per la vulnerabilità CVE-2022-34265 – già sanata dal vendor – presente nel noto framework Django. Tale vulnerabilità, qualora sfruttata, potrebbe permettere ad un utente malintenzionato remoto di leggere e modificare i dati presenti nel database dell’applicazione. Source link Author:…

Continue reading →

Lug072022

OpenSSL Releases Security Update

Original release date: July 6, 2022 OpenSSL has released a security update to address a vulnerability affecting OpenSSL 3.0.4. An attacker could exploit this vulnerability to take control of an affected system.  CISA encourages users and administrators to review the OpenSSL advisory and upgrade to the…

Continue reading →

Lug062022

Aggiornamenti per prodotti Fortinet (AL02/220706/CSIRT-ITA)

Rilasciati aggiornamenti di sicurezza Fortinet che risolvono vulnerabilità in vari prodotti, di cui 4 con gravità “alta”. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.

Continue reading →

Lug052022

Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird

Original release date: June 29, 2022 Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system.   CISA encourages users and administrators to review the Mozilla…

Continue reading →

Page 161 of 176 ← First ... 159 160 161 162 163 ... Last →