RSS Parrot

BETA

🦜 Latest publications of type Security Advisories

@cert.europa.eu.publications.security-advisories@rss-parrot.net

I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline! Brought to you by the RSS Parrot.

---

RSS feed for the latest 10 publications of type Security Advisories.

Your feed and you don't want it here? Just e-mail the birb.

Site URL: cert.europa.eu/publications/security-advisories/

Feed URL: cert.europa.eu/publications/security-advisories-rss

Posts: 12

Followers: 1

2024-092: Critical Vulnerability in Veeam

https://cert.europa.eu/publications/security-advisories/2024-092/

Published: September 6, 2024 12:10

On September 5, 2024, Veeam disclosed a critical remote code execution (RCE) vulnerability tracked as CVE-2024-40711, affecting Veeam Backup & Replication (VBR). This flaw allows unauthenticated attackers to execute arbitrary code on vulnerable systems…

2024-091: High Severity Vulnerability in VMware Fusion for MacOS

https://cert.europa.eu/publications/security-advisories/2024-091/

Published: September 4, 2024 09:49

On September 3, 2024, Broadcom disclosed a high-severity vulnerability in VMware Fusion, which could allow attackers to execute arbitrary code on macOS systems.

2024-090: Multiple Vulnerabilities in Cisco NX-OS Software

https://cert.europa.eu/publications/security-advisories/2024-090/

Published: September 2, 2024 09:40

On August 28, Cisco released patches for multiple vulnerabilities affecting its NX-OS software, primarily used in Nexus switches. The most severe of these is a high-severity denial-of-service (DoS) vulnerability in the DHCPv6 relay agent, which could allow…

2024-088: Chrome ZeroDay Vulnerabilities

https://cert.europa.eu/publications/security-advisories/2024-088/

Published: August 27, 2024 10:52

A critical zero-day vulnerability, CVE-2024-7971, has been identified and patched in Google Chrome. This marks the ninth such vulnerability discovered in 2024. The flaw, which has been actively exploited in the wild, is rooted in a type confusion issue…

2024-089: Critical Vulnerability in SonicWall SonicOS

https://cert.europa.eu/publications/security-advisories/2024-089/

Published: August 27, 2024 10:04

On August 23, 2024, SonicWall issued a security advisory regarding a critical access control vulnerability (CVE-2024-40766) in its SonicOS. This flaw could allow attackers to gain unauthorised access to resources or cause the firewall crash. It is…

2024-084: High Severity Vulnerabilities in F5 Products

https://cert.europa.eu/publications/security-advisories/2024-084/

Published: August 21, 2024 14:17

On August 14, 2024, F5 released a security advisory addressing nine vulnerabilities in their products. Four of these vulnerabilities have been classified as high severity due to their potential to facilitate session hijacking and to lead to…

2024-083: Palo Alto Networks Cortex XSOAR Critical Vulnerability

https://cert.europa.eu/publications/security-advisories/2024-083/

Published: August 19, 2024 10:41

On August 15, 2024, Palo Alto Networks released a security advisory for a critical command injection vulnerability, CVE-2024-5914, in Cortex XSOAR. This flaw allows unauthenticated attackers to execute arbitrary commands within the context of an…

2024-082: Zabbix Server Critical Arbitrary Code Execution Vulnerability

https://cert.europa.eu/publications/security-advisories/2024-082/

Published: August 16, 2024 10:46

On August 13, 2024, a critical vulnerability, CVE-2024-22116, was disclosed in Zabbix Server, allowing attackers with restricted administrative permissions to execute arbitrary code. The flaw, identified in the Ping script execution within the Monitoring…

2024-081: SolarWinds Web Help Desk Critical Remote Code Execution Vulnerability

https://cert.europa.eu/publications/security-advisories/2024-081/

Published: August 16, 2024 10:41

On August 14, 2024, SolarWinds disclosed a critical remote code execution (RCE) vulnerability, CVE-2024-28986, affecting all versions of their Web Help Desk (WHD) software. The vulnerability, caused by a Java deserialization flaw, allows attackers to…

2024-080: Multiple Critical Vulnerabilities in Microsoft Products

https://cert.europa.eu/publications/security-advisories/2024-080/

Published: August 14, 2024 16:09

On August 13, 2024, Microsoft addressed 89 vulnerabilities in its August 2024 Patch Tuesday update, including ten zero-day vulnerabilities. This Patch Tuesday also fixes six critical vulnerabilities.

2024-079: Critical SAP Authentication Bypass Vulnerability

https://cert.europa.eu/publications/security-advisories/2024-079/

Published: August 14, 2024 15:38

On August 13, 2024, SAP released a security advisory for a critical authentication bypass vulnerability, CVE-2024-41730, in SAP BusinessObjects Business Intelligence Platform. This flaw allows remote attackers to bypass authentication mechanisms,…