Tanzania Computer Emergency Response Team

QNQP has released security updates to address vulnerabilities in QTS, QuTS hero and QuTScloud. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review QNAP Security Advisory and apply necessary updates.

Advisory No: TZCERT/SA/2024/02/15 Date of First Release: 15th February 2024 Source: WPScan Software Affected: Revolution Slider Plugin version <= 6.6.12 Overview: The vulnerability exists in the Revolution Slider plugin prior to version <= 6.6.12. Successfully exploitation of this vulnerability could allow a remote attacker to execute code on the affected …

Advisory No: TZCERT/SA/2024/02/15 Date of First Release: 15th February 2025 Source: Microsoft Software Affected: Microsoft Exchange Server Overview: Microsoft has disclosed a critical security flaw in Exchange Server that is being exploited by malicious actors. Successful exploitation of this flaw may allow an attacker to gain privileges as the victim …

Juniper has released security updates to address a vulnerability in Junos OS on SRX Series and EX Series. Exploitation of this vulnerability may allow an attacker to take control of affected system. Users and administrators are encouraged to review Juniper Security Bulletin and apply necessary updates.

SolarWinds has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SolarWinds Security Advisory for CVE-2023-50395 and CVE-2023-35188 and apply necessary updates.