Tanzania Computer Emergency Response Team

OpenSSL Security Update

16th December 2021

OpenSSL has released security updates to address a vulnerability in OpenSSL v.3.x and v.1.x. Exploitation of this vulnerability may allow an attacker to take control of affected system. Users and administrators are encouraged to review OpenSSL Security Advisory and apply necessary updates.

Elasticsearch Security Update

16th December 2021

Elasticsearch has released security updates to address a vulnerability in Elasticsearch v.5.x and v.6.x. Exploitation of this vulnerability may allow an attacker to take control of affected system. Users and administrators are encouraged to review Elasticsearch Security Advisories apache-log4j and elasticsearch-5-and-6-log4j-remediation and apply necessary updates.

HP Security Update

16th December 2021

Hewlett Packard has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review HP Security Advisories hpesbnw04216 and hpesbgn04215 and apply necessary updates.

F5 Security Update

16th December 2021

F5 has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review F5 Security Advisory and apply necessary updates.

NetApp Security Update

16th December 2021

NetApp has released security updates to address a vulnerability in its multiple products. Exploitation of this vulnerability may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review NetApp Security Advisory and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

OpenSSL Security Update

Elasticsearch Security Update

HP Security Update

F5 Security Update

NetApp Security Update

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)