Tanzania Computer Emergency Response Team

TZCERT-SU-24-0287 (WordPress Security Update)

14th March 2024

Wordfence has released security updates to address vulnerabilities in Malware Scanner, Hustle, weForms, Post Grid Combo and Bulgarisation for WooCommerce. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Wordfence Security Advisories malware-scanner, hustle, weforms, post-grid and bulgarisation-for-woocommerce and apply …

TZCERT-SU-24-0286 (SUSE Security Update)

14th March 2024

SUSE has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories dated 13th March 2024 and apply necessary updates.

TZCERT-SU-24-0285 (Cisco Security Update)

14th March 2024

Cisco has released security updates to address vulnerabilities in Cisco IOS XR, Cisco SD-WAN vManage and Cisco Secure Client. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Cisco Security Advisories cisco-sa-xrl2vpn, cisco-sa-iosxr-ssh-privesc, cisco-sa-iosxr-pppma, cisco-sa-vmanage-unauthapi and cisco-sa-secure-client-crlf and apply necessary …

TZCERT-SU-24-0284 (Slackware Security Update)

14th March 2024

Slackware has released security update to address a vulnerability in expat. Exploitation of this vulnerability may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review Slackware Security Advisory and apply necessary updates.

TZCERT-SU-24-0283 (Ubuntu Security Update)

14th March 2024

Ubuntu has released security updates to address vulnerabilities in rack, PostgreSQL, open vSwitch, Linux kernel, gson, .NET and OpenSSL. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6689-1, USN-6656-2, USN-6690-1, LSN-0101-1, USN-6692-1, USN-6693-1 and …

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0287 (WordPress Security Update)

TZCERT-SU-24-0286 (SUSE Security Update)

TZCERT-SU-24-0285 (Cisco Security Update)

TZCERT-SU-24-0284 (Slackware Security Update)

TZCERT-SU-24-0283 (Ubuntu Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)