Tanzania Computer Emergency Response Team

Spring has released security updates to address vulnerabilities in Spring Framework. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Spring Security Advisory and apply necessary updates.

NetApp has released security updates to address vulnerabilities in ONTAP. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review NetApp Security Advisories ntap-20240411-0002 and ntap-20240411-0001 and apply necessary updates.

Wordfence has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Wordfence Security Advisories wp-easycat, wpvivid-backuprestore, conveythis-translate, wp-activity-log, customily-v2, wp-carousel and wp-letsencrypt-ssl and apply necessary updates.

GitLab has released security updates to address vulnerabilities in in Gitlab 16.10.x, 16.9.x and 16.8.x. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review GitLab Security Advisory and apply necessary updates.

ZDI has released security updates to address vulnerabilities in Arista NG Firewall, Microsoft’s Windows Installer, Azure Private 5G Core and Windows Internet Shortcut. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review ZDI Security Advisories ZDI-24-364, ZDI-24-363, ZDI-24-362 …