Tanzania Computer Emergency Response Team

Cisco Security Update

26th February 2021

Cisco has released security updates to address vulnerabilities to its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Cisco Security Advisories cisco-sa-sudo-privesc and cisco-sa-n9kaci-unauth-access and apply necessary updates.

Ubuntu Security Update

26th February 2021

Ubuntu has released security updates to address vulnerabilities in Linux kernel, python and LibTIFF. Exploitation of these vulnerabilities may allow an attacker to take control of affected systems. Users and administrators are encouraged to review Ubuntu Security Advisories and apply necessary updates.

Red Hat Security Update

26th February 2021

Red Hat has released security updates to address vulnerabilities in Ansible Engine and OpenShift Container Platform. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition. Users and administrators are encouraged to review Red Hat Security Advisories RHSA-2021:0100 and RHSA-2021:0664 and apply necessary updates.

VMware Remote Code Execution Vulnerability – CVE-2021-21972, CVE-2021-21973 and CVE-2021-21974

25th February 2021

Advisory No: TZCERT/SA/2021/02/25 Date of First Release: 25th February 2021 Source: VMware Software Affected: VMware vCenter Server version 6.5, 6.7 and 7.0VMware ESXi version 6.5, 6.7 and 7.0VMware Cloud Foundation (vCenter Server) version 3.x and 4.xVMware Cloud Foundation (ESXi) version 3.x and 4.x Overview: The vSphere Client (HTML5) contains a remote code execution vulnerability …

Mozilla security Update

25th February 2021

Mozilla has released security updates to address vulnerabilities in Thunderbird 78.8, Firefox 86, Firefox ESR 78.8. The exploitation of this vulnerability could allow an attacker to take control of an affected system. Users and Administrators are encouraged to review released Mozilla security advisory and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

Cisco Security Update

Ubuntu Security Update

Red Hat Security Update

VMware Remote Code Execution Vulnerability – CVE-2021-21972, CVE-2021-21973 and CVE-2021-21974

Mozilla security Update

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)