Tanzania Computer Emergency Response Team

NetApp has released security updates to address vulnerabilities in python, nodeJS, Linux kernel, OpenSSL and curl. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review NetApp Security Advisories ntap-20230214-0001, ntap-20230214-0010, ntap-20230214-0003, ntap-20230214-0011 and ntap-20230214-0002 and apply necessary updates.

NodeJS has released security updates to address vulnerabilities in Node.js versions 14.x, 16.x, 18.x and 19.x. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review NodeJS Security Advisory and apply necessary updates.

Netgear has released security updates to address a vulnerability in CAX30 and CAX30s. Exploitation of this vulnerability may allow an attacker to take control of affected system. Users and administrators are encouraged to review Netgear Security Advisory and apply necessary updates.

Jenkins has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Jenkins Security Advisory and apply necessary updates.

Lenovo has released security updates to address vulnerabilities in Intel SPS, BIOS, MAI MegaRAC, Intel Ethernet and Crypto API. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Lenovo Security Advisories LEN-99960, LEN-107840, LEN-105117, LEN-103547 and LEN-102352 and apply necessary updates.