A huge collection of 3400+ free website templates JAR theme com WP themes and more at the biggest community-driven free web design site

Alerts

Red Hat Security Update

31st August 2023

Red Hat has released security updates to address vulnerabilities in openssh, kernel, kubernetes and cups. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review Red Hat Security Advisories RHSA-2023:4889, RHSA-2023:4801, RHSA-2023:4885 and RHSA-2023:4864 and apply necessary updates.

Cisco Security Update

31st August 2023

Cisco has released security updates to address vulnerabilities in Cisco BroadWorks CommPilot and Cisco Unified CM SME. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege.

Users and administrators are encouraged to review Cisco Security Advisories cisco-sa-commpilot-xss and cisco-sa-cucm-priv-esc and apply necessary updates.

Multiple vulnerabilities affecting VMware Aria Operations for Networks (CVE-2023-34039, CVE-2023-20890)

31st August 2023

Advisory No: TZCERT/SA/2023/08/31

Date of First Release: 31st August 2023

Source: VMWARE

Software Affected:  VMware Aria Operations for Networks

Overview:

VMware has released patches to address critical security vulnerabilities affecting Aria Operations for Networks. These vulnerabilities could allow an attacker to take control of the affected system.

Description:

The authentication bypass and arbitrary file write vulnerabilities tracked by CVE-2023-34039 and CVE-2023-20890 resulted from the lack of unique cryptgraphic key generation and unlimited access allowing privileged users to insidiously write files to any chosen location respectively.

Impact:

Successful exploitation of this vulnerability may allow the attacker to control of the affected system.

Solution:

VMware has released a patch for this vulnerability. Users and administrators are encouraged to apply necessary updates.

References:

  1. https://www.vmware.com/security/advisories/VMSA-2023-0018.html
  2. https://vulcan.io/blog/how-to-fix-cve-2023-34039-cve-2023-20890-in-aria-operations/

Chrome Security Update

28th August 2023

Google has released security updates to address vulnerabilities in ChromeOS/ ChromeOS Flex. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Chrome Releases and apply necessary updates.

Oracle Linux Security Update

28th August 2023

Oracle has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Oracle Security Advisories dated 28th August 2023 and apply necessary updates.

DISCLAIMER |FAQ |CONTACT US
Tanzania Computer Emergency Response Team © Copyright 2024, All Rights Reserved.