Critical Security Issues in TeamCity On-Premises (CVE-2024-27198 and CVE-2024-27199)
Imechapishwa:
Mar 07, 2024 (tokea miezi 10)
Reference No:
TZCERT/SA/2024/03/06
Muhtasari:
CVE-2024-27198 (CVSS base score of 9.8 - Critical): is an authenticati...
Read more
XSS vulnerability in the LiteSpeed Cache plugin for WordPress (CVE-2023-40000)
Imechapishwa:
Feb 29, 2024 (tokea miezi 10)
Reference No:
TZCERT/SA/2024/02/29
Muhtasari:
Advisory No: TZCERT/SA/2024/02/29
Date of First Release: 28th Febru...
Read more
Critical Vulnerability in WordPress Bricks Plug-in (CVE-2024-25600)
Imechapishwa:
Feb 22, 2024 (tokea miezi 10)
Reference No:
TZCERT/SA/2024/02/22
Muhtasari:
CVE-2024-25600 (CVSS score of 9.8) is due to an eval function call in...
Read more
Revolution Slider Plugin Remote Code Execution (CVE-2023-2359)
Imechapishwa:
Feb 15, 2024 (tokea miezi 11)
Reference No:
TZCERT/SA/2024/02/15
Muhtasari:
CVE-2024-20253 is resulting from the improper processing of user-provi...
Read more
Microsoft Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)
Imechapishwa:
Feb 15, 2024 (tokea miezi 11)
Reference No:
TZCERT/SA/2024/02/15
Muhtasari:
The vulnerability (CVE-2024-21410, CVSS score: 9.8) results in NTLM cr...
Read more
IBM Sterling Control Center vulnerable to denial of service due to Spring Boot and remote code execution due to Spring Framework (CVE-2023-20883 and CVE-2016-1000027)
Imechapishwa:
Feb 08, 2024 (tokea miezi 11)
Reference No:
TZCERT/SA/2024/02/08-2
Muhtasari:
The vulnerabilities with CVEID CVE-2016-1000027 and CVE-2023-20883 res...
Read more
Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities (CVE-2024-20252, CVE-2024-20254 and CVE-2024-20255)
Imechapishwa:
Feb 08, 2024 (tokea miezi 11)
Reference No:
TZCERT/SA/2024/02/08-1
Muhtasari:
Following insufficient CSRF protection for the web-based management in...
Read more
Unified CM and Unity Connection remote code execution and file upload vulnerabilities (CVE-2024-20253 and CVE-2024-20272)
Imechapishwa:
Feb 02, 2024 (tokea miezi 11)
Reference No:
TZCERT/SA/2024/02/02
Muhtasari:
CVE-2024-20253 is resulting from the improper processing of user-provi...
Read more
Apple WebKit Zero-Day vulnerability (CVE-2024-23222)
Imechapishwa:
Jan 25, 2024 (tokea miezi 11)
Reference No:
TZCERT/SA/2024/01/24
Muhtasari:
The vulnerability (CVE-2024-23222, CVSS score: 7.5) is a type of confu...
Read more