Security Advisories

XSS vulnerability in the LiteSpeed Cache plugin for WordPress (CVE-2023-40000)
Published On: Feb 29, 2024 (6 months ago)
Reference No: TZCERT/SA/2024/02/29
Overview:
Advisory No: TZCERT/SA/2024/02/29 Date of First Release: 28th Febru...
Read more
Critical Vulnerability in WordPress Bricks Plug-in (CVE-2024-25600)
Published On: Feb 22, 2024 (6 months ago)
Reference No: TZCERT/SA/2024/02/22
Overview:
CVE-2024-25600 (CVSS score of 9.8) is due to an eval function call in...
Read more
Revolution Slider Plugin Remote Code Execution (CVE-2023-2359)
Published On: Feb 15, 2024 (7 months ago)
Reference No: TZCERT/SA/2024/02/15
Overview:
CVE-2024-20253 is resulting from the improper processing of user-provi...
Read more
Microsoft Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)
Published On: Feb 15, 2024 (7 months ago)
Reference No: TZCERT/SA/2024/02/15
Overview:
The vulnerability (CVE-2024-21410, CVSS score: 9.8) results in NTLM cr...
Read more
IBM Sterling Control Center vulnerable to denial of service due to Spring Boot and remote code execution due to Spring Framework (CVE-2023-20883 and CVE-2016-1000027)
Published On: Feb 08, 2024 (7 months ago)
Reference No: TZCERT/SA/2024/02/08-2
Overview:
The vulnerabilities with CVEID CVE-2016-1000027 and CVE-2023-20883 res...
Read more
Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities (CVE-2024-20252, CVE-2024-20254 and CVE-2024-20255)
Published On: Feb 08, 2024 (7 months ago)
Reference No: TZCERT/SA/2024/02/08-1
Overview:
Following insufficient CSRF protection for the web-based management in...
Read more
Unified CM and Unity Connection remote code execution and file upload vulnerabilities (CVE-2024-20253 and CVE-2024-20272)
Published On: Feb 02, 2024 (7 months ago)
Reference No: TZCERT/SA/2024/02/02
Overview:
CVE-2024-20253 is resulting from the improper processing of user-provi...
Read more
Apple WebKit Zero-Day vulnerability (CVE-2024-23222)
Published On: Jan 25, 2024 (7 months ago)
Reference No: TZCERT/SA/2024/01/24
Overview:
The vulnerability (CVE-2024-23222, CVSS score: 7.5) is a type of confu...
Read more
GitLab Critical Security Release for GitLab Community Edition (CE) and Enterprise Edition (EE)
Published On: Jan 15, 2024 (8 months ago)
Reference No: TZCERT/SA/2024/01/15
Overview:
The vulnerability (CVE-2023-7028, CVSS score: 10) is caused by a fault...
Read more

Subscribe To TZ - CERT Newsletter

A digest of Tanzania Computer Emergency Response Team coverage of cyber-security news across the globe.

Subscribe
Report Incident