Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Cisco Releases Security Updates for Multiple Products

Original release date: July 10, 2019Cisco has released security updates to address a vulnerability in Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software. A remote attacker could exploit this vulnerability to cause a...
Auteur: US Cert

Microsoft Releases July 2019 Security Updates

Original release date: July 9, 2019Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity...
Auteur: US Cert

Intel Releases Security Updates

Original release date: July 9, 2019Intel has released security updates to address vulnerabilities in Intel Solid State Drives for Data Centers and Intel Processor Diagnostic Tool. An attacker could exploit these vulnerabilities to gain an...
Auteur: US Cert

Mozilla Releases Security Updates for Firefox and Firefox ESR

Original release date: July 9, 2019Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and...
Auteur: US Cert

Adobe Releases Security Updates

Original release date: July 9, 2019Adobe has released security updates to address vulnerabilities affecting Bridge CC, Experience Manager, and Dreamweaver. An attacker could exploit one of these vulnerabilities to take control of an affected...
Auteur: US Cert

U.S. Coast Guard Releases Cybersecurity Measures for Commercial Vessels

Original release date: July 8, 2019The U.S. Coast Guard has released a Safety Alert with recommended cybersecurity best practices for commercial vessels. With a dynamic cybersecurity threat landscape and growing reliance on technology to support...
Auteur: US Cert

ACSC Releases Updated Essential Eight Maturity Model

Original release date: July 5, 2019The Australian Cyber Security Centre (ACSC) has released updates to its Essential Eight Maturity Model. The model assists organizations in determining the maturity of their implementation of the Essential...
Auteur: US Cert

Cisco Releases Security Updates for Multiple Products

Original release date: July 3, 2019Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and...
Auteur: US Cert

VMware Releases Security Advisory for Multiple Products

Original release date: July 2, 2019VMware has released a security advisory to address vulnerabilities affecting multiple products. An attacker could exploit these vulnerabilities to cause a denial-of-service condition. The Cybersecurity and...
Auteur: US Cert

NCSC Releases Advisory on Ryuk Ransomware

Original release date: June 28, 2019The United Kingdom (UK) National Cyber Security Centre (NCSC) has released an advisory, Ryuk Ransomware Targeting Organisations Globally, on their ongoing investigation into global Ryuk ransomware campaigns and...
Auteur: US Cert

Google Releases Security Updates for Chrome OS

Original release date: June 27, 2019Google has released Chrome OS version 75.0.3770.102 for Chrome devices. This version addresses multiple vulnerabilities that an attacker could exploit to obtain sensitive information. The Cybersecurity and...
Auteur: US Cert

NIST Releases Report on Managing IoT Risks

Original release date: June 26, 2019The National Institute of Standards and Technology (NIST) has released the Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks report. The publication—the first in a planned...
Auteur: US Cert

Cisco Releases Security Updates for Data Center Network Manager

Original release date: June 26, 2019Cisco has released security updates to address vulnerabilities in Cisco Data Center Network Manager (DCNM). A remote attacker could exploit some of these vulnerabilities to take control of an affected...
Auteur: US Cert

CISA Statement on Iranian Cybersecurity Threats

Original release date: June 24, 2019 Cybersecurity and Infrastructure Security Agency (CISA) Director Christopher C. Krebs has released a statement in response to the recent rise in malicious cyber activity—including spear phishing and...
Auteur: US Cert

Dell Releases Security Advisory for Dell SupportAssist

Original release date: June 21, 2019 Dell has released a security advisory to address a vulnerability in Dell SupportAssist software. An attacker could exploit this vulnerability to access sensitive information.The Cybersecurity and...
Auteur: US Cert

Apache Releases Security Advisory for Apache Tomcat

Original release date: June 20, 2019 Apache has released a security advisory to address a vulnerability in Apache Tomcat. An attacker could exploit this vulnerability to cause a denial-of-service condition.The Cybersecurity and...
Auteur: US Cert

Apple Releases Security Updates for AirPort 802.11n Wi-Fi Base Stations

Original release date: June 20, 2019 Apple releases security updates to address vulnerabilities in AirPort Express, AirPort Extreme, and AirPort Time Capsule wireless routers with 802.11n. A remote attacker could exploit some of these...
Auteur: US Cert

Multiple Vulnerabilities Affecting Linux, FreeBSD Kernels

Original release date: June 20, 2019 The CERT Coordination Center (CERT/CC) has released information on TCP networking vulnerabilities affecting Linux and FreeBSD kernels. A remote attacker could exploit these vulnerabilities to cause a...
Auteur: US Cert

Microsoft Releases Outlook for Android Security Update

Original release date: June 20, 2019 Microsoft has released an update to address a vulnerability in Outlook for Android. An attacker could exploit this vulnerability to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

VU#905115: Multiple TCP Selective Acknowledgement (SACK) and Maximum Segment Size (MSS) networking vulnerabilities may cause denial-of-service conditions in Linux and FreeBSD kernels

CVE-2019-11477:SACK Panic(Linux>=2.6.29). A sequence of specifically crafted selective acknowledgements(SACK)may trigger an integer overflow,leading to a denial of service or possible kernel failure(panic). CVE-2019-11478:SACK...
Auteur: US Cert

Mozilla Releases Security Updates for Firefox and Firefox ESR

Original release date: June 20, 2019 Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system.The Cybersecurity and...
Auteur: US Cert

ISC Releases BIND Security Updates

Original release date: June 19, 2019 The Internet Systems Consortium (ISC) has released updates that address a vulnerability in versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit this vulnerability to...
Auteur: US Cert

Cisco Releases Security Updates for Multiple Products

Original release date: June 19, 2019 Cisco has released security updates to address vulnerabilities in multiple Cisco products.  A remote attacker could exploit some of these vulnerabilities to take control of an affected system.The...
Auteur: US Cert

Oracle Releases Security Advisory for WebLogic

Original release date: June 19, 2019 Oracle has released a security alert to address a vulnerability in WebLogic. A remote attacker could exploit this vulnerability to take control of an affected system. This vulnerability was detected in...
Auteur: US Cert

Samba Releases Security Updates

Original release date: June 19, 2019 The Samba Team has released security updates to address vulnerabilities in Samba 4.9 and all versions of Samba from 4.10 onward. An attacker could exploit these vulnerabilities to cause a...
Auteur: US Cert
First9101112131415161718Last

Événements SSI