Tanzania Computer Emergency Response Team

NetApp has released security updates to address vulnerabilities in ontap9 and snapgatchers. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review NetApp Security Advisories ntap-20231009-0001 and ntap-20231009-0002 and apply necessary updates.

Hewlett-Packard has released security updates to address a vulnerability in HPE MSA. Exploitation of this vulnerability may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review HP Security Advisory and apply necessary updates.

Oracle has released security updates to address vulnerabilities in nodejs, glibc and kernel. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Security Advisories ELSA-2023-5532, ELSA-2023-12853 and ELSA-2023-12858 and apply necessary updates.

Advisory No: TZCERT/SA/2023/10/5 Date of First Release: 5th October 2023 Source: CISCO Software Affected:  Cisco Emergency Responder Overview: A vulnerability affecting Cisco Emergency Responder has been disclosed. This vulnerability may lead to arbitrary code execution in the context of privileged user. Description: Cisco Emergency Responder has the static user credentials …

SUSE has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20233975-1, suse-su-20233981-1, suse-su-20233984-1, suse-su-20233969-1, suse-su-20233966-1, suse-su-20233957-1 and suse-su-20233963-1 and apply necessary updates.