Original release date: May 31, 2022 Microsoft has released workaround guidance to address a remote code execution (RCE) vulnerability—CVE-2022-30190, known as “Follina”—affecting the Microsoft Support Diagnostic Tool (MSDT) in Windows. A remote, unauthenticated attacker could exploit this vulnerability to take control of an affected system….
Scarica il riepilogo delle notizie pubblicate dallo CSIRT Italia dal 23 al 29 maggio 2022 Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: May 26, 2022 Citrix has released security updates to address vulnerabilities in ADC and Gateway. An attacker could exploit these vulnerabilities to cause a denial-of-service condition. CISA encourages users and administrators to review Citrix Security Update CTX457048 and apply the necessary updates. This…
Zyxel rilascia aggiornamenti di sicurezza per sanare vulnerabilità, di cui una con gravità “alta”, nei propri Firewall, Access Point e controller Access Point. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: May 26, 2022 Drupal has released security updates to address a vulnerability that does not affect Drupal core but may affect some contributed projects or custom code on Drupal sites. Exploitation of this vulnerability could allow a remote attacker to take control…
Rilasciato un Proof of Concept (PoC) per la vulnerabilità CVE-2022-22972 che interessa alcuni prodotti VMWare. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.
Original release date: May 25, 2022 Google has released Chrome version 102.0.5005.61 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply…
Mozilla ha rilasciato aggiornamenti di sicurezza per sanare 2 vulnerabilità con gravità “critica” nei prodotti Firefox, Firefox ESR, Firefox per Android e Thunderbird. Source link Author: csirt@alfacert.gov.it Article used for cyber security disclosure.