Tanzania Computer Emergency Response Team

TZCERT-SU-24-0576 (Oracle Linux Security Update)

31st May 2024

Oracle has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Linux Security Advisories ELSA-2024-3513, ELSA-2024-3343, ELSA-2024-3345, ELSA-2024-3271, ELSA-2024-3347, ELSA-2024-3339, ELSA-2024-3261, ELSA-2024-3270 and ELSA-2024-3265 and apply necessary updates.

TZCERT-SU-24-0575 (WordPress Security Update)

31st May 2024

Wordfence has released security updates to address vulnerabilities in multiple plugins. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Wordfence Security Advisories atarim-visual-collaboration, responsive-owl-carousel-elementor, ultimate-post, apppresser, login-with-phone-number, unlimited-elements-for-elementor, wp-staging and swiss-toolkit-for-wp and apply necessary updates.

TZCERT-SU-24-0574 (Red Hat Security Update)

31st May 2024

Red Hat has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Red Hat Security Advisories dated 30th May 2024 and apply necessary updates.

TZCERT-SU-24-0573 (Chrome Security Update)

31st May 2024

Chrome has released security updates to address vulnerabilities in Chrome for Android, iOS, Desktop and ChromeOS. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Chrome Security Advisories chrome-for-android, chrome-stable-for-ios, chrome-for-desktop and chrome-for-chromeos and apply necessary updates.

TZCERT-SU-24-0572 (Dell Security Update)

31st May 2024

Dell has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisories dsa-2024-225, dsa-2024-237 and dsa-2024-238 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0576 (Oracle Linux Security Update)

TZCERT-SU-24-0575 (WordPress Security Update)

TZCERT-SU-24-0574 (Red Hat Security Update)

TZCERT-SU-24-0573 (Chrome Security Update)

TZCERT-SU-24-0572 (Dell Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)