Tanzania Computer Emergency Response Team

Elasticsearch Security Update

30th September 2022

Elasticsearch has released security update to address a vulnerability in Elastic Cloud Enterprise. Exploitation of this vulnerability may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review Elasticsearch Security Advisory and apply necessary updates.

Slackware Security Update

28th September 2022

Slackware updates to address vulnerabilities in vim and dnsmasq packages. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Slackware Security Advisories SSA:2022-269-02 and SSA:2022-269-01 and apply necessary updates.

Veritas Security Update

28th September 2022

Veritas has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Veritas Security Advisories VTS22-010, VTS22-012 and VTS22-013 and apply necessary updates.

IBM Security Update

28th September 2022

IBM has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review IBM Security Bulletins dated 26th September 2022 and apply necessary updates.

Mitsubishi Security Update

28th September 2022

Mitsubishi has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Mitsubishi Security advisories for CVE-2020-16226 and CVE-2020-14496 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

Elasticsearch Security Update

Slackware Security Update

Veritas Security Update

IBM Security Update

Mitsubishi Security Update

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)