Tanzania Computer Emergency Response Team

TZCERT-SU-24-0495 (Adobe Security Update)

17th May 2024

Adobe has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Adobe Security Advisories dated 14th May 2024 and apply necessary updates.

TZCERT-SU-24-0494 (Fortinet Security Update)

17th May 2024

FortiGuard Labs has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Fortinet Security Advisories dated 14th May 2024 and apply necessary updates.

TZCERT-SU-24-0493 (Chrome Security Update)

17th May 2024

Google has released security updates to address vulnerabilities in Chrome for Android, Desktop and ChromeOS. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Chrome Security Advisories chrome-for-android, chrome-for-desktop and chrome-for-chromeos and apply necessary updates.

TZCERT-SU-24-0492 (Drupal Security Update)

17th May 2024

Drupal has released security update to address a vulnerability in RESTful Web Services. Exploitation of this vulnerability may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Drupal Security Advisory and apply necessary updates.

TZCERT-SU-24-0491 (GitHub Security Update)

17th May 2024

GitHub has released security updates to address vulnerabilities in Magento. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review GitHub Security Advisories GHSA-cv25-3pxr-4q7x and GHSA-8j7c-682x-r9f2 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0495 (Adobe Security Update)

TZCERT-SU-24-0494 (Fortinet Security Update)

TZCERT-SU-24-0493 (Chrome Security Update)

TZCERT-SU-24-0492 (Drupal Security Update)

TZCERT-SU-24-0491 (GitHub Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)