Tanzania Computer Emergency Response Team

TZCERT-SU-24-0379 (Rapid7 Security Update)

8th April 2024

Rapid7 has released security updated to address vulnerabilities in InsightVM. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review InsightVM Release Note and apply necessary updates.

TZCERT-SU-24-0378 (NVIDIA Security Update)

8th April 2024

NVIDIA has released security updates to address vulnerabilities in NVIDIA CUDA Toolkit. Exploitation of these vulnerabilities may allow an attacker to cause Denial of Service condition to an affected system. Users and Administrators are encouraged to review NVIDIA Security Bulletin and apply necessary updates.

TZCERT-SU-24-0377 (Lenovo Security Update)

8th April 2024

Lenovo has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Lenovo Security Advisories dated 4th April 2024 and apply necessary updates.

TZCERT-SU-24-0376 (Red Hat Security Update)

8th April 2024

Red Hat has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Red Hat Security Advisories dated 4th and 5th April 2024 and apply necessary updates.

TZCERT-SU-24-0375 (NetApp Security update)

8th April 2024

NetApp has released security updates to address vulnerabilities in Its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review NetApp Security Advisories dated 5th April 2024 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0379 (Rapid7 Security Update)

TZCERT-SU-24-0378 (NVIDIA Security Update)

TZCERT-SU-24-0377 (Lenovo Security Update)

TZCERT-SU-24-0376 (Red Hat Security Update)

TZCERT-SU-24-0375 (NetApp Security update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)