Tanzania Computer Emergency Response Team

TrendMicro Security Update

13th October 2023

TrendMicro has released security update to address vulnerabilities in curl and libcurl. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review TrendMicro Security Advisory and apply necessary updates.

HP Security Update

13th October 2023

Hewlett-Packard has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review HP Security Advisories hpesbst04539, hpesbhf04426 and hpesbhf04434 and apply necessary updates.

Citrix Security Update

13th October 2023

Citrix has released security updates to address vulnerabilities in citrix hypervisor. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Citrix Security Advisories CTX575089 and CTX579459 and apply necessary updates.

Elasticsearch Security Update

13th October 2023

Elastic Co. has released security updates to address vulnerabilities in fleet server and kibana. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Elastic Security Advisories fleet-server-v8-10-3 and kibana-8-10-3-7-17-14 and apply necessary updates.

Oracle Linux Security Update

13th October 2023

Oracle has released security updates to address vulnerabilities in thunderbird, python, kernel and libvpx. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Linux Security Advisories ELSA-2023-5475, ELSA-2023-5616, ELSA-2023-5622 and ELSA-2023-5539 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TrendMicro Security Update

HP Security Update

Citrix Security Update

Elasticsearch Security Update

Oracle Linux Security Update

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)