Spring has released security updates to address vulnerabilities in Spring Framework. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Spring Security Advisory and apply necessary updates.
Read More »Current Activities
TZCERT-SU-24-0401 (NetApp Security Update)
NetApp has released security updates to address vulnerabilities in ONTAP. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review NetApp Security Advisories ntap-20240411-0002 and ntap-20240411-0001 and apply necessary updates.
Read More »TZCERT-SU-24-0400 (Wordfence Security Update)
Wordfence has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Wordfence Security Advisories wp-easycat, wpvivid-backuprestore, conveythis-translate, wp-activity-log, customily-v2, wp-carousel and wp-letsencrypt-ssl and apply necessary updates.
Read More »TZCERT-SU-24-0399 (GitLab Security Update)
GitLab has released security updates to address vulnerabilities in in Gitlab 16.10.x, 16.9.x and 16.8.x. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review GitLab Security Advisory and apply necessary updates.
Read More »TZCERT-SU-24-0398 (Zero Day Initiative Security Update)
ZDI has released security updates to address vulnerabilities in Arista NG Firewall, Microsoft’s Windows Installer, Azure Private 5G Core and Windows Internet Shortcut. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review ZDI Security Advisories ZDI-24-364, ZDI-24-363, ZDI-24-362 …
Read More »