Tanzania Computer Emergency Response Team

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

2 weeks ago

Advisory No: TZCERT/SA/2024/07/04-2 Date of First Release: 4th July 2024 Source: IBM Software Affected: IBM Observability with Instana (OnPrem) Overview: WordPress is vulnerable to four critical vulnerabilities. The attackers can leverage the vulnerability to take control of the affected system. Description: IBM Observability with Instana (OnPrem) is affected by a …

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

2 weeks ago

Advisory No: TZCERT/SA/2024/07/04-1 Date of First Release: 4th July 2024 Source: Wordfence Software Affected: wp-nested-pages, addons-for-elementor and IMGspider Overview: WordPress is vulnerable to four critical vulnerabilities. The attackers can leverage the vulnerabilities to take control of the affected system. Description: Three WordPress plugins namely wp-nested-pages, addons-for-elementor and IMGspider as affected …

TZCERT-SU-24-0703 (Oracle Linux Security Update)

2 weeks ago

Oracle Linux has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Oracle Security Advisories dated 2nd July 2024 and apply necessary updates.

TZCERT-SU-24-0701 (SUSE Security Update)

2 weeks ago

SUSE has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review SUSE Security Advisories dated 2nd July 2024 and apply necessary updates.

TZCERT-SU-24-0700 (Ubuntu Security Update)

2 weeks ago

Ubuntu has released security updates to address vulnerabilities in OpenVPN package. Exploitation of these vulnerabilities may allow an attacker to cause denial of service condition and/or take control of an affected system. Users and Administrators are encouraged to review Ubuntu Security Notice and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

TZCERT-SU-24-0703 (Oracle Linux Security Update)

TZCERT-SU-24-0701 (SUSE Security Update)

TZCERT-SU-24-0700 (Ubuntu Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)