Apple Releases Security Updates for iOS and iPadOS
Apple released security updates to address vulnerabilities in iOS and iPadOS. A cyber threat actor could exploit one of these vulnerabilities to obtain sensitive information.
Warnings
VMware Releases Security Advisory for Aria Operations
VMware released a security advisory to address multiple vulnerabilities in ESXi, Workstation, Fusion, and Cloud Foundation. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.
Cisco Releases Security Advisories for Cisco NX-OS Software
Cisco released security advisories to address vulnerabilities affecting Cisco NX-OS Software. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition. Read more
Mozilla Releases Security Updates for Firefox and Thunderbird
Mozilla released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. Read more
VMware публикува съвети за уязвимости във VMware vCenter Server и VMware Cloud Foundation
VMware предупреди за две критично важни уязвимости, засягащи VMware vCenter Server и VMware Cloud Foundation. Първата уязвимост CVE-2023-34048 (CVSSv3 e 9,8) е насочена към услугата за администриране на vCenter Server, която използва DCERPC протокол, работещ по подразбиране на TCP/135 порт. Нападател, който има достъп до мрежата на vCenter Server, може да използва уязвимоста, за да поеме … Read more
Нова уязвимост засягаща Microsoft Exchange e-mail сървъри
Microsoft обяви, че е открита нова уязвимост засягаща Microsoft Exchange e-mail сървъри – CVE-2024-21410 тип privilege escalation с оценка CVSS 9,8. Уязвимостта позволява при извлечени NTLM (Network Trust Level Manager се използва като средство за удостоверяване) креденшъли да бъдат използвани за нерегламентирано проникване в Exchange server-a и за извършване на операции с тях. Може да … Read more
Adobe Releases Security Updates for Multiple Products
Adobe публикува актуализации на защитата за отстраняване на уязвимости в софтуера на Adobe. Нападател може да използва някои от тези уязвимости, за да поеме контрол над засегната система. CERT България препоръчва потребителите и администраторите да се запознаят със следните бюлетини за сигурност на Adobe и да приложат необходимите актуализации: Adobe Commerce and Magento Adobe Substance … Read more
Microsoft Releases Security Updates for Multiple Products
Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
Fortinet Releases Security Advisories for FortiOS
Fortinet released security updates to address critical remote code execution vulnerabilities in FortiOS (CVE-2024-21762, CVE-2024-23313). A cyber threat actor could exploit these vulnerabilities to take control of an affected system.
Cisco Releases Security Advisories for Multiple Products
Cisco released a security advisory to address vulnerabilities affecting Cisco Expressway Series. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.