Loading...

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec


CERT Alert Data #
CERT Alert Data #
CSIRT ITRilevate vulnerabilità in prodotti Fortinet (AL06/231011/CSIRT-ITA) - Aggiornamento30-05-20240
SANSFeeding MISP with OSSEC, (Thu, May 30th)30-05-20241
SANSISC Stormcast For Thursday, May 30th, 2024 https://isc.sans.edu/podcastdetail/9002, (Thu, May 30th)30-05-20242
Consiglio Federale CH Ginevra centro delle discussioni di alto livello su digitalizzazione e IA 30-05-20243
Center of Internet SecurityMultiple Vulnerabilities in Fortinet FortiSIEM Could Allow for Remote Code Execution29-05-20244
FR-CERT AvisVulnérabilité dans les produits Check Point (29 mai 2024)29-05-20245
CSIRT ITCheckPoint: rilevato sfruttamento in rete della CVE-2024-24919 relativa ai prodotti Security Gateways (AL03/240529/CSIRT-ITA)29-05-20246
FR-CERT AvisMultiples vulnérabilités dans Nagios XI (29 mai 2024)29-05-20247
FR-CERT AvisVulnérabilité dans SPIP (29 mai 2024)29-05-20248
US-CERT CISACISA Adds One Known Exploited Vulnerability to Catalog29-05-20249
CERT-Bund DE[NEU] [mittel] Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff29-05-202410
CERT-Bund DE[NEU] [mittel] GNOME: Schwachstelle ermöglicht Denial of Service und unspezifische Angriffe29-05-202411
CERT-Bund DE[NEU] [mittel] MinIO: Schwachstelle ermöglicht Offenlegung von Informationen29-05-202412
CERT-Bund DE[NEU] [hoch] OpenSSL: Schwachstelle ermöglicht Codeausführung, Datenmanipulation, Offenlegung von Informationen und Dos29-05-202413
CERT-Bund DE[NEU] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe29-05-202414
CERT-Bund DE[UPDATE] [mittel] libxml2: Schwachstelle ermöglicht Denial of Service29-05-202415
CERT-Bund DE[UPDATE] [mittel] OpenSSL: Schwachstelle ermöglicht Denial of Service29-05-202416
CERT-Bund DE[UPDATE] [hoch] git: Mehrere Schwachstellen29-05-202417
CERT-Bund DE[NEU] [hoch] Xerox FreeFlow Print Server: Mehrere Schwachstellen29-05-202418
CERT-Bund DE[UPDATE] [mittel] IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen29-05-202419
CERT-Bund DE[NEU] [hoch] TIBCO Managed File Transfer: Schwachstelle ermöglicht Umgehen von Authentifizierung29-05-202420
CERT-Bund DE[NEU] [hoch] ILIAS: Mehrere Schwachstellen ermöglichen Codeausführung29-05-202421
FR-CERT AvisVulnérabilité dans OpenSSL (29 mai 2024)29-05-202422
FR-CERT AvisVulnérabilité dans Spring Cloud Skipper (29 mai 2024)29-05-202423
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen29-05-202424
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff29-05-202425
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202426
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff29-05-202427
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff29-05-202428
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202429
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202430
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202431
CERT-Bund DE[UPDATE] [hoch] GNU libc: Schwachstelle ermöglicht Codeausführung29-05-202432
CERT-Bund DE[UPDATE] [mittel] GNU libc: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202433
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202434
CERT-Bund DE[NEU] [mittel] Citrix Systems Workspace App: Schwachstelle ermöglicht Privilegieneskalation29-05-202435
CERT-Bund DE[UPDATE] [mittel] IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service29-05-202436
CERT-Bund DE[UPDATE] [mittel] IBM WebSphere Application Server: Mehrere Schwachstellen29-05-202437
CERT-Bund DE[NEU] [mittel] Foxit PDF Editor und PDF Reader: Mehrere Schwachstellen29-05-202438
CERT-Bund DE[NEU] [mittel] Ivanti Endpoint Manager: Schwachstelle ermöglicht Privilegieneskalation29-05-202439
CERT-Bund DE[NEU] [mittel] Red Hat Enterprise Linux (rpm-ostree): Schwachstelle ermöglicht Offenlegung von Informationen29-05-202440
CERT-Bund DE[UPDATE] [mittel] Grub2: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen29-05-202441
CERT-Bund DE[UPDATE] [mittel] Intel Prozessor: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen29-05-202442
CERT-Bund DE[UPDATE] [hoch] Oracle MySQL: Mehrere Schwachstellen29-05-202443
CERT-Bund DE[UPDATE] [mittel] FasterXML Jackson: Schwachstelle ermöglicht Denial of Service29-05-202444
CERT-Bund DE[UPDATE] [mittel] Grub2: Mehrere Schwachstellen29-05-202445
CERT-Bund DE[UPDATE] [mittel] python-setuptools: Schwachstelle ermöglicht Denial of Service29-05-202446
CERT-Bund DE[UPDATE] [mittel] Eclipse Jetty: Mehrere Schwachstellen29-05-202447
CERT-Bund DE[UPDATE] [mittel] QEMU: Schwachstelle ermöglicht Denial of Service29-05-202448
CERT-Bund DE[UPDATE] [mittel] Python: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen29-05-202449
CERT-Bund DE[UPDATE] [mittel] Golang Go: Schwachstelle ermöglicht Denial of Service29-05-202450
CERT-Bund DE[UPDATE] [mittel] Red Hat Enterprise Linux (Rust): Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes29-05-202451
CERT-Bund DE[UPDATE] [hoch] Intel PROSet Wireless WiFi Software: Mehrere Schwachstellen29-05-202452
CERT-Bund DE[UPDATE] [hoch] Python: Mehrere Schwachstellen29-05-202453
CERT-Bund DE[UPDATE] [hoch] Splunk Splunk Enterprise: Mehrere Schwachstellen29-05-202454
CERT-Bund DE[UPDATE] [mittel] Golang Go: Mehrere Schwachstellen29-05-202455
CERT-Bund DE[UPDATE] [hoch] Red Hat Ansible Automation Platform: Mehrere Schwachstellen29-05-202456
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Privilegieneskalation29-05-202457
CERT-Bund DE[UPDATE] [mittel] Grub2: Mehrere Schwachstellen ermöglichen Codeausführung29-05-202458
CERT-Bund DE[UPDATE] [mittel] Apache HTTP Server: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202459
CERT-Bund DE[UPDATE] [mittel] QEMU: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen29-05-202460
CERT-Bund DE[UPDATE] [hoch] Red Hat Enterprise Linux: Mehrere Schwachstellen29-05-202461
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Denial of Service29-05-202462
CERT-Bund DE[UPDATE] [hoch] Red Hat Enterprise Linux: Mehrere Schwachstellen29-05-202463
CERT-Bund DE[UPDATE] [mittel] AMD Prozessor: Mehrere Schwachstellen29-05-202464
CERT-Bund DE[UPDATE] [hoch] Splunk Enterprise: Mehrere Schwachstellen29-05-202465
CERT-Bund DE[UPDATE] [mittel] Golang Go: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff29-05-202466
CERT-Bund DE[UPDATE] [hoch] Perl: Mehrere Schwachstellen ermöglichen Codeausführung29-05-202467
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation29-05-202468
CERT-Bund DE[UPDATE] [mittel] Golang Go: Schwachstelle ermöglicht Offenlegung von Informationen29-05-202469
CERT-Bund DE[UPDATE] [mittel] SSH Protokoll: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen29-05-202470
CERT-Bund DE[UPDATE] [mittel] QEMU: Schwachstelle ermöglicht Offenlegung von Informationen29-05-202471
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202472
CERT-Bund DE[UPDATE] [mittel] QEMU: Schwachstelle ermöglicht Denial of Service29-05-202473
CERT-Bund DE[UPDATE] [hoch] Linux Kernel: Mehrere Schwachstellen ermöglichen Privilegieneskalation29-05-202474
CERT-Bund DE[UPDATE] [hoch] docker: Mehrere Schwachstellen29-05-202475
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen29-05-202476
CERT-Bund DE[UPDATE] [kritisch] Fortinet FortiSIEM: Mehrere Schwachstellen ermöglichen Codeausführung mit "root" Rechten29-05-202477
CERT-Bund DE[UPDATE] [niedrig] Grub: Schwachstelle ermöglicht Denial of Service29-05-202478
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202479
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202480
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Denial of Service29-05-202481
CERT-Bund DE[UPDATE] [mittel] Linux-Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe29-05-202482
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202483
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202484
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff29-05-202485
CERT-Bund DE[UPDATE] [mittel] Red Hat Enterprise Linux und Directory Server: Schwachstelle ermöglicht Denial of Service29-05-202486
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202487
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Denial of Service29-05-202488
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202489
CERT-Bund DE[UPDATE] [mittel] Apache Tomcat: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202490
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe29-05-202491
CERT-Bund DE[UPDATE] [mittel] Python: Mehrere Schwachstellen ermöglichen Codeausführung und DoS29-05-202492
CERT-Bund DE[UPDATE] [mittel] Varnish HTTP Cache: Schwachstelle ermöglicht Denial of Service29-05-202493
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-202494
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff29-05-202495
CERT-Bund DE[UPDATE] [mittel] HTTP/2: Mehrere Schwachstellen ermöglichen Denial of Service29-05-202496
CERT-Bund DE[UPDATE] [mittel] FRRouting Project FRRouting: Schwachstellen ermöglichen Denial of Service29-05-202497
CERT-Bund DE[UPDATE] [hoch] Oracle Java SE: Mehrere Schwachstellen29-05-202498
CERT-Bund DE[UPDATE] [mittel] Red Hat Enterprise Linux (pcs): Mehrere Schwachstellen ermöglichen Denial of Service29-05-202499
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen29-05-2024100
CERT-Bund DE[UPDATE] [hoch] Red Hat Enterprise Linux: Mehrere Schwachstellen29-05-2024101
CERT-Bund DE[UPDATE] [mittel] FRRouting Project FRRouting: Schwachstelle ermöglicht Denial of Service29-05-2024102
CERT-Bund DE[UPDATE] [hoch] Red Hat Enterprise Linux: Mehrere Schwachstellen29-05-2024103
CERT-Bund DE[UPDATE] [hoch] Mozilla Firefox, Firefox ESR und Thunderbird: Mehrere Schwachstellen29-05-2024104
CERT-Bund DE[UPDATE] [hoch] LibreOffice: Schwachstelle ermöglicht Codeausführung29-05-2024105
CERT-Bund DE[UPDATE] [hoch] Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung29-05-2024106
CERT-Bund DE[NEU] [hoch] Checkmk: Schwachstelle ermöglicht Offenlegung von Informationen und Manipulation von Dateien29-05-2024107
FR-CERT AvisVulnérabilité dans Citrix Workspace app pour Mac (29 mai 2024)29-05-2024108
CSIRT ITAggiornamenti per VMware Spring Cloud Data Flow (AL02/240529/CSIRT-ITA)29-05-2024109
CSIRT ITRilevato sfruttamento in rete della CVE-2024-5274 relativa al browser Chrome (AL01/240529/CSIRT-ITA)29-05-2024110
NCSCThe threat from commercial cyber proliferation29-05-2024111
SANSISC Stormcast For Wednesday, May 29th, 2024 https://isc.sans.edu/podcastdetail/9000, (Wed, May 29th)29-05-2024112
SANS
Is that It? Finding the Unknown: Correlations Between Honeypot Logs & PCAPs [Guest Diary], (Tue, May 28th)29-05-2024113
US-CERT CISACampbell Scientific CSI Web Server28-05-2024114
US-CERT CISACISA Releases One Industrial Control Systems Advisory28-05-2024115
US-CERT CISACISA Adds One Known Exploited Vulnerability to Catalog28-05-2024116
CERT-Bund DE[NEU] [hoch] Red Hat OpenShift GitOps: Schwachstelle ermöglicht Privilegieneskalation28-05-2024117
CERT-Bund DE[UPDATE] [hoch] Apache Struts: Schwachstelle ermöglicht Denial of Service28-05-2024118
CERT-Bund DE[UPDATE] [mittel] less: Schwachstelle ermöglicht Codeausführung28-05-2024119
CERT-Bund DE[UPDATE] [mittel] Apache HTTP Server: Mehrere Schwachstellen ermöglichen Manipulation von Daten28-05-2024120
CERT-Bund DE[UPDATE] [hoch] less: Schwachstelle ermöglicht Codeausführung28-05-2024121
CERT-Bund DE[UPDATE] [mittel] OpenSSL: Schwachstelle ermöglicht Denial of Service28-05-2024122
CERT-Bund DE[NEU] [hoch] HPE HP-UX: Mehrere Schwachstellen28-05-2024123
SANSISC Stormcast For Tuesday, May 28th, 2024 https://isc.sans.edu/podcastdetail/8998, (Tue, May 28th)28-05-2024124
CERT-Bund DE[UPDATE] [hoch] GitLab: Mehrere Schwachstellen27-05-2024125
CERT-Bund DE[NEU] [hoch] Jenkins Plugins: Mehrere Schwachstellen27-05-2024126
CERT-Bund DE[UPDATE] [mittel] IBM InfoSphere Information Server: Schwachstelle ermöglicht Privilegieneskalation27-05-2024127
CERT-Bund DE[UPDATE] [hoch] Apache HTTP Server: Mehrere Schwachstellen27-05-2024128
CERT-Bund DE[UPDATE] [mittel] expat: Schwachstelle ermöglicht Denial of Service27-05-2024129
CERT-Bund DE[UPDATE] [mittel] Apache OpenOffice und LibreOffice: Mehrere Schwachstellen ermöglichen Codeausführung27-05-2024130
CERT-Bund DE[UPDATE] [mittel] IBM WebSphere Application Server: Schwachstelle ermöglicht Cross-Site Scripting27-05-2024131
CERT-Bund DE[UPDATE] [mittel] IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen27-05-2024132
CERT-Bund DE[UPDATE] [mittel] IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen und DoS27-05-2024133
CERT-Bund DE[UPDATE] [mittel] IBM HTTP Server: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen27-05-2024134
CERT-Bund DE[UPDATE] [hoch] LibreOffice: Mehrere Schwachstellen27-05-2024135
CERT-Bund DE[UPDATE] [mittel] LibreOffice: Schwachstelle ermöglicht Erzeugung von Dateien27-05-2024136
CERT-Bund DE[UPDATE] [hoch] LibreOffice: Mehrere Schwachstellen27-05-2024137
CERT-Bund DE[UPDATE] [niedrig] Redmine.org Redmine: Mehrere Schwachstellen ermöglichen Cross-Site Scripting27-05-2024138
CERT-Bund DE[UPDATE] [mittel] OpenSC: Schwachstelle ermöglicht Offenlegung von Informationen27-05-2024139
CERT-Bund DE[UPDATE] [mittel] Red Hat OpenShift: Schwachstelle ermöglicht Offenlegung von Informationen27-05-2024140
CERT-Bund DE[UPDATE] [niedrig] PostgreSQL: Schwachstelle ermöglicht Offenlegung von Informationen27-05-2024141
CERT-Bund DE[UPDATE] [mittel] bluez: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes27-05-2024142
CERT-Bund DE[UPDATE] [hoch] Apple macOS: Mehrere Schwachstellen27-05-2024143
CERT-Bund DE[NEU] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe27-05-2024144
CERT-Bund DE[NEU] [mittel] IEEE 802.11 WLAN: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen27-05-2024145
FR-CERT AvisMultiples vulnérabilités dans Microsoft Edge (27 mai 2024)27-05-2024146
SANSFiles with TXZ extension used as malspam attachments, (Mon, May 27th)27-05-2024147
CSIRT ITLa Settimana Cibernetica del 26 maggio 202427-05-2024148
Consiglio Federale CH Lunch de presse avec la direction du SECO 27-05-2024149
SANSYARA 4.5.1 Release, (Sun, May 26th)26-05-2024150
MSRC Security UpdateChromium: CVE-2024-5274 Type Confusion in V825-05-2024151
SANScsvkit, (Sat, May 25th)25-05-2024152
MSRC Security UpdateChromium: CVE-2024-5159 Heap buffer overflow in ANGLE25-05-2024153
MSRC Security UpdateChromium: CVE-2024-5157 Use after free in Scheduling25-05-2024154
MSRC Security UpdateChromium: CVE-2024-5160 Heap buffer overflow in Dawn25-05-2024155
MSRC Security UpdateChromium: CVE-2024-5158 Type Confusion in V825-05-2024156
CSIRT ITRisolta vulnerabilità in Cisco Firepower Management (AL02/240524/CSIRT-ITA)24-05-2024157
US-CERT CISACisco Releases May 2024 Cisco ASA, FMC, and FTD Software Security Publication 24-05-2024158
FR-CERT AvisMultiples vulnérabilités dans les produits IBM (24 mai 2024)24-05-2024159
FR-CERT AvisVulnérabilité dans les produits WithSecure (24 mai 2024)24-05-2024160
FR-CERT AvisMultiples vulnérabilités dans le noyau Linux de SUSE (24 mai 2024)24-05-2024161
FR-CERT AvisMultiples vulnérabilités dans le noyau Linux d'Ubuntu (24 mai 2024)24-05-2024162
CERT-Bund DE[UPDATE] [hoch] Node.js: Mehrere Schwachstellen24-05-2024163
CERT-Bund DE[UPDATE] [mittel] Apache Commons: Mehrere Schwachstellen ermöglichen Denial of Service24-05-2024164
FR-CERT AvisMultiples vulnérabilités dans le noyau Linux de Red Hat (24 mai 2024)24-05-2024165
FR-CERT AvisVulnérabilité dans Google Chrome (24 mai 2024)24-05-2024166
CERT-Bund DE[NEU] [mittel] Ivanti Secure Access Client: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit administrativen Rechten24-05-2024167
FR-CERT AvisMultiples vulnérabilités dans les produits Mitel (24 mai 2024)24-05-2024168
Center of Internet SecurityA Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution24-05-2024169
CERT-Bund DE[UPDATE] [hoch] ILIAS: Mehrere Schwachstellen24-05-2024170
CERT-Bund DE[UPDATE] [mittel] Rsync: Mehrere Schwachstellen24-05-2024171
CERT-Bund DE[UPDATE] [mittel] zlib: Schwachstelle ermöglicht Codeausführung24-05-2024172
CERT-Bund DE[UPDATE] [hoch] zlib: Schwachstelle ermöglicht nicht spezifizierten Angriff24-05-2024173
CERT-Bund DE[UPDATE] [mittel] Eclipse Jetty: Mehrere Schwachstellen24-05-2024174
CERT-Bund DE[UPDATE] [hoch] Eclipse Jetty: Mehrere Schwachstellen ermöglichen Denial of Service24-05-2024175
CERT-Bund DE[UPDATE] [hoch] Linux Kernel: Schwachstelle ermöglicht Codeausführung24-05-2024176
CERT-Bund DE[UPDATE] [hoch] Apache ActiveMQ: Schwachstelle ermöglicht Codeausführung24-05-2024177
CERT-Bund DE[UPDATE] [niedrig] VMware Tanzu Spring Framework und Boot: Mehrere Schwachstellen ermöglichen Denial of Service24-05-2024178
CERT-Bund DE[UPDATE] [mittel] Apache Tomcat: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen24-05-2024179
CERT-Bund DE[UPDATE] [mittel] Apache Camel: Mehrere Schwachstellen ermöglichen Denial of Service24-05-2024180
CERT-Bund DE[UPDATE] [hoch] Logback: Schwachstelle ermöglicht Denial of Service24-05-2024181
CERT-Bund DE[UPDATE] [hoch] Logback: Schwachstelle ermöglicht Denial of Service24-05-2024182
CERT-Bund DE[UPDATE] [hoch] Red Hat JBoss A-MQ: Mehrere Schwachstellen24-05-2024183
CERT-Bund DE[UPDATE] [mittel] Apache Solr: Schwachstelle ermöglicht Offenlegung von Informationen24-05-2024184
CERT-Bund DE[UPDATE] [mittel] Oracle Java SE: Mehrere Schwachstellen24-05-2024185
CERT-Bund DE[UPDATE] [mittel] Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen24-05-2024186
CERT-Bund DE[UPDATE] [mittel] GNOME: Schwachstelle ermöglicht Denial of Service und Code-Ausführung24-05-2024187
CERT-Bund DE[UPDATE] [mittel] VMware Tanzu Spring Framework: Schwachstelle ermöglicht Offenlegung von Informationen24-05-2024188
CERT-Bund DE[UPDATE] [mittel] Golang Go: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff24-05-2024189
CERT-Bund DE[UPDATE] [hoch] Mozilla Firefox, Firefox ESR und Thunderbird: Mehrere Schwachstellen24-05-2024190
CERT-Bund DE[UPDATE] [hoch] Podman: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen24-05-2024191
CERT-Bund DE[UPDATE] [mittel] X.Org X Server und Xming: Mehrere Schwachstellen24-05-2024192
CERT-Bund DE[UPDATE] [hoch] Google Chrome / Microsoft Edge: Mehrere Schwachstellen24-05-2024193
CERT-Bund DE[UPDATE] [mittel] Google Chrome: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff24-05-2024194
CERT-Bund DE[UPDATE] [mittel] Mozilla Firefox und Thunderbird: Mehrere Schwachstellen24-05-2024195
CERT-Bund DE[UPDATE] [mittel] Red Hat OpenShift: Mehrere Schwachstellen24-05-2024196
CERT-Bund DE[UPDATE] [mittel] Google Chrome und Microsoft Edge: Mehrere Schwachstellen24-05-2024197
CERT-Bund DE[UPDATE] [hoch] Google Chrome / Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff24-05-2024198
CERT-Bund DE[UPDATE] [mittel] Google Chrome: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff24-05-2024199
CERT-Bund DE[UPDATE] [hoch] Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff24-05-2024200
CERT-Bund DE[UPDATE] [hoch] Google Chrome/Microsoft Edge: Schwachstelle ermöglicht nicht spezifizierten Angriff24-05-2024201
CERT-Bund DE[UPDATE] [hoch] Microsoft Developer Tools: Mehrere Schwachstellen24-05-2024202
CERT-Bund DE[UPDATE] [mittel] Intel Prozessoren: Mehrere Schwachstellen24-05-2024203
CERT-Bund DE[UPDATE] [hoch] Google Chrome und Microsoft Edge: Mehrere Schwachstellen24-05-2024204
CERT-Bund DE[UPDATE] [mittel] Red Hat OpenStack: Mehrere Schwachstellen24-05-2024205
CERT-Bund DE[UPDATE] [mittel] Google Chrome: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff24-05-2024206
CERT-Bund DE[UPDATE] [hoch] Red Hat OpenShift: Mehrere Schwachstellen24-05-2024207
CERT-Bund DE[NEU] [hoch] Mitel MiCollab: Mehrere Schwachstellen24-05-2024208
CERT-Bund DE[NEU] [mittel] HP LaserJet: Mehrere Schwachstellen24-05-2024209
CSIRT ITCampagna phishing a tema Zimbra (AL01/240524/CSIRT-ITA)24-05-2024210
SANSISC Stormcast For Friday, May 24th, 2024 https://isc.sans.edu/podcastdetail/8996, (Fri, May 24th)24-05-2024211
Center of Internet SecurityA Vulnerability in GitHub Enterprise Server (GHES) Could Allow for Authentication Bypass23-05-2024212
US-CERT CISACISA Releases One Industrial Control Systems Advisory23-05-2024213
US-CERT CISAAutomationDirect Productivity PLCs23-05-2024214
US-CERT CISACISA Adds One Known Exploited Vulnerability to Catalog23-05-2024215
CERT-Bund DE[NEU] [mittel] Linux Kernel (Bluetooth): Mehrere Schwachstellen23-05-2024216
CERT-Bund DE[UPDATE] [mittel] Node.js: Mehrere Schwachstellen23-05-2024217
CERT-Bund DE[UPDATE] [mittel] Tenable Security Nessus Network Monitor: Mehrere Schwachstellen23-05-2024218
CERT-Bund DE[NEU] [mittel] Cisco Firepower und ASA: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen23-05-2024219
Unit42Operation Diplomatic Specter: An Active Chinese Cyberespionage Campaign Leverages Rare Tool Set to Target Governmental Entities in the Middle East, Africa and Asia23-05-2024220
CERT-Bund DE[UPDATE] [mittel] VLC: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff23-05-2024221
CERT-Bund DE[NEU] [mittel] Mehrere Cisco-Produkte: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen23-05-2024222
CERT-Bund DE[NEU] [mittel] Progress Software MOVEit Automation: Schwachstelle ermöglicht Offenlegung von Informationen23-05-2024223
CERT-Bund DE[NEU] [hoch] Cisco Firepower: Mehrere Schwachstellen23-05-2024224
FR-CERT AvisMultiples vulnérabilités dans les produits Cisco (23 mai 2024)23-05-2024225
CERT-Bund DE[UPDATE] [mittel] Intel Prozessoren: Schwachstelle ermöglicht Offenlegung von Informationen23-05-2024226
CERT-Bund DE[UPDATE] [hoch] PostgreSQL JDBC Driver: Schwachstelle ermöglicht SQL-Injection23-05-2024227
CERT-Bund DE[NEU] [mittel] WithSecure Endpoint Protection: Schwachstelle ermöglicht Privilegieneskalation23-05-2024228
CERT-Bund DE[NEU] [mittel] Drupal Erweiterungen: Mehrere Schwachstellen23-05-2024229
CERT-Bund DE[NEU] [niedrig] IBM App Connect Enterprise: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen23-05-2024230
CSIRT ITAtlassian: PoC pubblico per lo sfruttamento della CVE-2024-21683 (AL03/240523/CSIRT-ITA)23-05-2024231
CSIRT ITVulnerabilità presenti in prodotti NAS QNAP (AL02/240523/CSIRT-ITA)23-05-2024232
CERT-Bund DE[UPDATE] [mittel] Perl: Mehrere Schwachstellen23-05-2024233
CERT-Bund DE[UPDATE] [hoch] Cisco ASA (Adaptive Security Appliance) und Cisco Firepower: Mehrere Schwachstellen ermöglichen Denial of Service23-05-2024234
CERT-Bund DE[UPDATE] [mittel] GStreamer: Mehrere Schwachstellen ermöglichen Denial of Service23-05-2024235
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Privilegieneskalation23-05-2024236
CERT-Bund DE[UPDATE] [hoch] Linux Kernel: Mehrere Schwachstellen23-05-2024237
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen23-05-2024238
CERT-Bund DE[UPDATE] [mittel] Angular: Schwachstelle ermöglicht Denial of Service23-05-2024239
CERT-Bund DE[UPDATE] [mittel] Node.js: Schwachstelle ermöglicht Codeausführung23-05-2024240
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen23-05-2024241
CERT-Bund DE[UPDATE] [mittel] Adobe Acrobat & Reader: Mehrere Schwachstellen23-05-2024242
CERT-Bund DE[UPDATE] [mittel] Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service23-05-2024243
CERT-Bund DE[UPDATE] [hoch] win.rar WinRAR: Schwachstelle ermöglicht Denial of Service und Informationsoffenlegung23-05-2024244
CERT-Bund DE[UPDATE] [hoch] Roundcube: Mehrere Schwachstellen23-05-2024245
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe23-05-2024246
CERT-Bund DE[NEU] [mittel] lighttpd: Schwachstelle ermöglicht Denial of Service und Informationsgewinn23-05-2024247
CSIRT ITSanate vulnerabilità su GitLab CE/EE (AL01/240523/CSIRT-ITA)23-05-2024248
SANSISC Stormcast For Thursday, May 23rd, 2024 https://isc.sans.edu/podcastdetail/8994, (Thu, May 23rd)23-05-2024249
CSIRT ITPoC pubblico per lo sfruttamento della CVE-2024-4323 (AL05/240522/CSIRT-ITA)22-05-2024250
FR-CERT AvisMultiples vulnérabilités dans les produits Ivanti (22 mai 2024)22-05-2024251
FR-CERT AvisMultiples vulnérabilités dans GitLab (22 mai 2024)22-05-2024252
FR-CERT AvisMultiples vulnérabilités dans les produits Atlassian (22 mai 2024)22-05-2024253
FR-CERT AvisMultiples vulnérabilités dans les produits Veeam (22 mai 2024)22-05-2024254
FR-CERT AvisMultiples vulnérabilités dans Google Chrome (22 mai 2024)22-05-2024255
FR-CERT AvisVulnérabilité dans les produits SolarWinds (22 mai 2024)22-05-2024256
FR-CERT AvisMultiples vulnérabilités dans les produits Qnap (22 mai 2024)22-05-2024257
FR-CERT AvisMultiples vulnérabilités dans les produits VMware (22 mai 2024)22-05-2024258
CERT-Bund DE[UPDATE] [hoch] Red Hat OpenShift: Mehrere Schwachstellen22-05-2024259
CERT-Bund DE[UPDATE] [mittel] Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service22-05-2024260
CERT-Bund DE[UPDATE] [mittel] MIT Kerberos: Mehrere Schwachstellen ermöglichen Denial of Service22-05-2024261
CERT-Bund DE[UPDATE] [hoch] Golang Go: Mehrere Schwachstellen22-05-2024262
CERT-Bund DE[UPDATE] [mittel] Red Hat Enterprise Linux: Golang-Komponenten-Schwachstelle ermöglicht Denial of Service22-05-2024263
CERT-Bund DE[UPDATE] [mittel] libvirt: Schwachstelle ermöglicht Denial of Service22-05-2024264
CERT-Bund DE[UPDATE] [mittel] Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen22-05-2024265
CERT-Bund DE[UPDATE] [mittel] Red Hat Enterprise Linux (sssd): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen22-05-2024266
CERT-Bund DE[NEU] [hoch] Red Hat Enterprise Linux: Mehrere Schwachstellen22-05-2024267
CERT-Bund DE[UPDATE] [mittel] OpenSSH: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes22-05-2024268
CERT-Bund DE[UPDATE] [mittel] Perl: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen22-05-2024269
CERT-Bund DE[UPDATE] [mittel] Oracle Java SE: Mehrere Schwachstellen22-05-2024270
CERT-Bund DE[UPDATE] [mittel] systemd: Schwachstelle ermöglicht Manipulation von Einträgen22-05-2024271
CERT-Bund DE[UPDATE] [hoch] libsndfile: Mehrere Schwachstellen22-05-2024272
CERT-Bund DE[UPDATE] [hoch] X.Org X11: Mehrere Schwachstellen22-05-2024273
CERT-Bund DE[UPDATE] [mittel] X.Org X11: Mehrere Schwachstellen22-05-2024274
CERT-Bund DE[UPDATE] [mittel] QT: Schwachstelle ermöglicht Denial of Service22-05-2024275
CERT-Bund DE[UPDATE] [mittel] Insyde UEFI Firmware: Mehrere Schwachstellen ermöglichen Codeausführung22-05-2024276
CERT-Bund DE[UPDATE] [hoch] EDK2 NetworkPkg IP stack implementation: Mehrere Schwachstellen22-05-2024277
CERT-Bund DE[UPDATE] [mittel] QT: Schwachstelle ermöglicht Denial of Service22-05-2024278
CERT-Bund DE[NEU] [mittel] IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service22-05-2024279
CERT-Bund DE[NEU] [hoch] Atlassian Jira Software (Data Center und Server): Mehrere Schwachstellen22-05-2024280
CERT-Bund DE[NEU] [mittel] SolarWinds Platform: Mehrere Schwachstellen22-05-2024281
CERT-Bund DE[NEU] [hoch] Microsoft GitHub Enterprise: Schwachstelle ermöglicht Erlangen von Administratorrechten22-05-2024282
CERT-Bund DE[NEU] [mittel] GStreamer: Schwachstelle ermöglicht Codeausführung22-05-2024283
CERT-Bund DE[NEU] [hoch] Atlassian Confluence: Mehrere Schwachstellen22-05-2024284
CERT-Bund DE[NEU] [mittel] Red Hat Enterprise Linux (traceroute): Schwachstelle ermöglicht Denial of Service22-05-2024285
CSIRT ITRisolte vulnerabilità in prodotti Ivanti (AL03/240522/CSIRT-ITA)22-05-2024286
CSIRT ITVulnerabilità in Veeam Backup Enterprise Manager (AL04/230522/CSIRT-ITA)22-05-2024287
CERT-Bund DE[UPDATE] [mittel] GnuTLS: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen und DoS22-05-2024288
CERT-Bund DE[NEU] [hoch] Atlassian Bitbucket: Mehrere Schwachstellen22-05-2024289
CERT-Bund DE[NEU] [hoch] VMware Produkte: Mehrere Schwachstellen22-05-2024290
CERT-Bund DE[NEU] [mittel] Arista EOS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen22-05-2024291
CERT-Bund DE[NEU] [hoch] Veeam Backup Enterprise Manager: Mehrere Schwachstellen22-05-2024292
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation22-05-2024293
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen22-05-2024294
CERT-Bund DE[UPDATE] [hoch] Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen22-05-2024295
CERT-Bund DE[UPDATE] [mittel] Red Hat OpenShift: Schwachstelle ermöglicht Denial of Service22-05-2024296
CERT-Bund DE[UPDATE] [mittel] Red Hat OpenShift: Mehrere Schwachstellen22-05-2024297
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen22-05-2024298
CERT-Bund DE[UPDATE] [hoch] Linux Kernel: Mehrere Schwachstellen ermöglichen Codeausführung22-05-2024299
CERT-Bund DE[UPDATE] [hoch] Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation22-05-2024300
CERT-Bund DE[UPDATE] [hoch] Red Hat FUSE: Mehrere Schwachstellen22-05-2024301
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen22-05-2024302
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff22-05-2024303
CERT-Bund DE[UPDATE] [mittel] Red Hat Migration Toolkit for Containers: Mehrere Schwachstellen22-05-2024304
CERT-Bund DE[UPDATE] [niedrig] Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen22-05-2024305
CERT-Bund DE[UPDATE] [mittel] libTIFF: Schwachstelle ermöglicht Denial of Service22-05-2024306
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation oder Denial of Service22-05-2024307
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service22-05-2024308
CERT-Bund DE[UPDATE] [hoch] FRRouting Project FRRouting: Mehrere Schwachstellen ermöglichen Denial of Service22-05-2024309
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen22-05-2024310
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen und Denial of Service22-05-2024311
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff22-05-2024312
CERT-Bund DE[UPDATE] [mittel] Linux Kernel: Mehrere Schwachstellen22-05-2024313
CERT-Bund DE[UPDATE] [mittel] Intel Ethernet Controller: Mehrere Schwachstellen22-05-2024314
CERT-Bund DE[UPDATE] [hoch] poppler: Mehrere Schwachstellen22-05-2024315
CSIRT ITRisolte vulnerabilità in prodotti VMware (AL02/240522/CSIRT-ITA)22-05-2024316
CSIRT ITRisolte vulnerabilità in Google Chrome (AL01/240522/CSIRT-ITA)22-05-2024317
Consiglio Federale CH Il consigliere federale Rösti al Forum internazionale dei trasporti di Lipsia 22-05-2024318
Consiglio Federale CH Il Consiglio federale adotta il messaggio concernente lo sviluppo di uno Swiss Government Cloud 22-05-2024319
CSIRT ITAggiornamenti per prodotti Zyxel (AL04/240521/CSIRT-ITA)21-05-2024320
CSIRT ITGitHub Enterprise Server: PoC pubblico per lo sfruttamento della CVE-2024-4985 (AL03/240521/CSIRT-ITA)21-05-2024321
CSIRT ITPoC pubblico per lo sfruttamento della CVE-2024-22120 (AL02/240521/CSIRT-ITA)21-05-2024322
FR-CERT AvisMultiples vulnérabilités dans Roundcube (21 mai 2024)21-05-2024323
FR-CERT AvisVulnérabilité dans Ruby on Rails (21 mai 2024)21-05-2024324
FR-CERT AvisVulnérabilité dans Asterisk (21 mai 2024)21-05-2024325
FR-CERT AvisMultiples vulnérabilités dans les produits NetApp (21 mai 2024)21-05-2024326
CSIRT ITAgent Tesla: rilevata campagna di distribuzione malware tramite email (AL01/240521/CSIRT-ITA)21-05-2024327
US-CERT CISARockwell Automation Encourages Customers to Assess and Secure Public-Internet-Exposed Assets21-05-2024328
US-CERT CISACISA Releases One Industrial Control Systems Advisory21-05-2024329
CSIRT ITVulnerabilità in prodotti NextGen HealthCare (AL03/231026/CSIRT-ITA) - Aggiornamento21-05-2024330
CSIRT ITSanate vulnerabilità in Tenable Nessus (AL02/240520/CSIRT-ITA)20-05-2024331
CSIRT ITVulnerabilità in prodotti Netgear (AL01/240520/CSIRT-ITA)20-05-2024332
CSIRT ITLa Settimana Cibernetica del 19 maggio 202420-05-2024333
CSIRT ITPoC pubblico per lo sfruttamento della CVE-2024-22026 (AL01/240517/CSIRT-ITA)17-05-2024334
FR-CERT AvisMultiples vulnérabilités dans le noyau Linux de RedHat (17 mai 2024)17-05-2024335
FR-CERT AvisVulnérabilité dans les produits Palo Alto Networks (17 mai 2024)17-05-2024336
FR-CERT AvisMultiples vulnérabilités dans les produits Mitel (17 mai 2024)17-05-2024337
FR-CERT AvisMultiples vulnérabilités dans le noyau Linux d'Ubuntu (17 mai 2024)17-05-2024338
FR-CERT AvisVulnérabilité dans Microsoft Azure Monitor Agent (17 mai 2024)17-05-2024339
FR-CERT AvisMultiples vulnérabilités dans les produits Tenable (17 mai 2024)17-05-2024340
FR-CERT AvisMultiples vulnérabilités dans les produits IBM (17 mai 2024)17-05-2024341
FR-CERT AvisMultiples vulnérabilités dans les produits MongoDB (17 mai 2024)17-05-2024342
FR-CERT AvisMultiples vulnérabilités dans le noyau Linux de SUSE (17 mai 2024)17-05-2024343
FR-CERT AvisVulnérabilité dans OpenSSL (17 mai 2024)17-05-2024344
Consiglio Federale CH Adottata la Convenzione sull'intelligenza artificiale del Consiglio d'Europa - la Svizzera ha contribuito attivamente 17-05-2024345
CSIRT ITGit: descrizione della vulnerabilità CVE-2024-32465 (BL01/240516/CSIRT-ITA)16-05-2024346
Unit42Payload Trends in Malicious OneNote Samples16-05-2024347
CSIRT ITSanata vulnerabilità in Proofpoint Enterprise Protection (AL03/240516/CSIRT-ITA)16-05-2024348
CSIRT ITRisolte vulnerabilità in Google Chrome (AL02/240516/CSIRT-ITA)16-05-2024349
CSIRT ITRisolte vulnerabilità in prodotti Cisco (AL01/240516/CSIRT-ITA)16-05-2024350
MSRC Security UpdateCVE-2024-30060 Azure Monitor Agent Elevation of Privilege Vulnerability16-05-2024351
MSRC Security UpdateCVE-2024-30041 Microsoft Bing Search Spoofing Vulnerability16-05-2024352
Consiglio Federale CH Linked data: vantaggi e sfide per l’amministrazione pubblica 16-05-2024353
Center of Internet SecurityA Vulnerability in SolarWinds Access Rights Manager Could Allow for Privilege Escalation15-05-2024354
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution15-05-2024355
CSIRT ITAggiornamenti di sicurezza LibreOffice (AL07/240515/CSIRT-ITA)15-05-2024356
CSIRT ITRisolte vulnerabilità in prodotti VMware (AL06/240515/CSIRT-ITA)15-05-2024357
CSIRT ITAdobe rilascia aggiornamenti per sanare molteplici vulnerabilità (AL05/240515/CSIRT-ITA)15-05-2024358
CSIRT ITAggiornamenti di sicurezza per prodotti Mozilla (AL04/240515/CSIRT-ITA)15-05-2024359
CSIRT ITRilevate vulnerabilità in prodotti Fortinet (AL03/240515/CSIRT-ITA)15-05-2024360
CSIRT ITSAP Security Patch Day (AL02/240515/CSIRT-ITA)15-05-2024361
MSRC Security UpdateCVE-2024-30009 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability15-05-2024362
MSRC Security UpdateCVE-2024-30017 Windows Hyper-V Remote Code Execution Vulnerability15-05-2024363
MSRC Security UpdateCVE-2024-30053 Azure Migrate Cross-Site Scripting Vulnerability15-05-2024364
MSRC Security UpdateCVE-2024-30055 Microsoft Edge (Chromium-based) Spoofing Vulnerability15-05-2024365
MSRC Security UpdateCVE-2024-30046 Visual Studio Denial of Service Vulnerability15-05-2024366
MSRC Security UpdateCVE-2024-30047 Dynamics 365 Customer Insights Spoofing Vulnerability15-05-2024367
MSRC Security UpdateCVE-2024-30044 Microsoft SharePoint Server Remote Code Execution Vulnerability15-05-2024368
MSRC Security UpdateCVE-2024-30041 Microsoft Bing Search Spoofing Vulnerability15-05-2024369
CSIRT ITAggiornamenti Mensili Microsoft (AL01/240515/CSIRT-ITA)15-05-2024370
Center of Internet SecurityMultiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution15-05-2024371
Center of Internet SecurityMultiple Vulnerabilities in Siemens Ruggedcom Crossbow Could Allow for Arbitrary Code Execution15-05-2024372
Consiglio Federale CH Il Consiglio federale avvia la consultazione concernente l’estensione dello scambio automatico internazionale di informazioni a fini fiscali alle cripto-attività 15-05-2024373
Center of Internet SecurityMultiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution14-05-2024374
CSIRT ITAggiornamenti per prodotti Siemens (AL04/240514/CSIRT-ITA)14-05-2024375
Center of Internet SecurityCritical Patches Issued for Microsoft Products, May 14, 202414-05-2024376
Center of Internet SecurityA Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution14-05-2024377
CSIRT ITAggiornamenti di sicurezza Apple (AL03/240514/CSIRT-ITA)14-05-2024378
CSIRT ITRisolta vulnerabilità in Google Chrome (AL02/240514/CSIRT-ITA)14-05-2024379
CSIRT ITVulnerabilità in Moodle (AL01/240514/CSIRT-ITA)14-05-2024380
MSRC Security UpdateChromium: CVE-2024-4761 Out of bounds write in V814-05-2024381
MSRC Security UpdateCVE-2024-30017 Windows Hyper-V Remote Code Execution Vulnerability14-05-2024382
MSRC Security UpdateCVE-2024-30012 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024383
MSRC Security UpdateCVE-2024-30014 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024384
MSRC Security UpdateCVE-2024-30015 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024385
MSRC Security UpdateCVE-2024-30016 Windows Cryptographic Services Information Disclosure Vulnerability14-05-2024386
MSRC Security UpdateCVE-2024-30053 Azure Migrate Cross-Site Scripting Vulnerability14-05-2024387
MSRC Security UpdateCVE-2024-30018 Windows Kernel Elevation of Privilege Vulnerability14-05-2024388
MSRC Security UpdateCVE-2024-30019 DHCP Server Service Denial of Service Vulnerability14-05-2024389
MSRC Security UpdateCVE-2024-30020 Windows Cryptographic Services Remote Code Execution Vulnerability14-05-2024390
MSRC Security UpdateCVE-2024-30021 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024391
MSRC Security UpdateCVE-2024-30022 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024392
MSRC Security UpdateCVE-2024-30011 Windows Hyper-V Denial of Service Vulnerability14-05-2024393
MSRC Security UpdateCVE-2024-30044 Microsoft SharePoint Server Remote Code Execution Vulnerability14-05-2024394
MSRC Security UpdateCVE-2024-30023 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024395
MSRC Security UpdateCVE-2024-30004 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024396
MSRC Security UpdateCVE-2024-30010 Windows Hyper-V Remote Code Execution Vulnerability14-05-2024397
MSRC Security UpdateCVE-2024-30009 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024398
MSRC Security UpdateCVE-2024-30008 Windows DWM Core Library Information Disclosure Vulnerability14-05-2024399
MSRC Security UpdateCVE-2024-30007 Microsoft Brokering File System Elevation of Privilege Vulnerability14-05-2024400
MSRC Security UpdateCVE-2024-30006 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability14-05-2024401
MSRC Security UpdateCVE-2024-30005 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024402
MSRC Security UpdateCVE-2024-30003 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024403
MSRC Security UpdateCVE-2024-30002 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024404
MSRC Security UpdateCVE-2024-30001 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024405
MSRC Security UpdateCVE-2024-30000 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024406
MSRC Security UpdateCVE-2024-29999 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024407
MSRC Security UpdateCVE-2024-29998 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024408
MSRC Security UpdateCVE-2024-29997 Windows Mobile Broadband Driver Remote Code Execution Vulnerability14-05-2024409
MSRC Security UpdateCVE-2024-29996 Windows Common Log File System Driver Elevation of Privilege Vulnerability14-05-2024410
MSRC Security UpdateCVE-2024-32002 CVE-2024-32002 Recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution14-05-2024411
MSRC Security UpdateCVE-2024-30050 Windows Mark of the Web Security Feature Bypass Vulnerability14-05-2024412
MSRC Security UpdateCVE-2024-30035 Windows DWM Core Library Elevation of Privilege Vulnerability14-05-2024413
MSRC Security UpdateCVE-2024-30059 Microsoft Intune for Android Mobile Application Management Tampering Vulnerability14-05-2024414
MSRC Security UpdateCVE-2024-30051 Windows DWM Core Library Elevation of Privilege Vulnerability14-05-2024415
MSRC Security UpdateCVE-2024-30043 Microsoft SharePoint Server Information Disclosure Vulnerability14-05-2024416
MSRC Security UpdateCVE-2024-30045 .NET and Visual Studio Remote Code Execution Vulnerability14-05-2024417
MSRC Security UpdateCVE-2024-30046 Visual Studio Denial of Service Vulnerability14-05-2024418
MSRC Security UpdateCVE-2024-30047 Dynamics 365 Customer Insights Spoofing Vulnerability14-05-2024419
MSRC Security UpdateCVE-2024-30048 Dynamics 365 Customer Insights Spoofing Vulnerability14-05-2024420
MSRC Security UpdateCVE-2024-30049 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability14-05-2024421
MSRC Security UpdateCVE-2024-32004 GitHub: CVE-2024-32004 Remote Code Execution while cloning special-crafted local repositories14-05-2024422
MSRC Security UpdateCVE-2024-30041 Microsoft Bing Search Spoofing Vulnerability14-05-2024423
MSRC Security UpdateCVE-2024-26238 Microsoft PLUGScheduler Scheduled Task Elevation of Privilege Vulnerability14-05-2024424
MSRC Security UpdateCVE-2024-28902 Windows Remote Access Connection Manager Information Disclosure Vulnerability14-05-2024425
MSRC Security UpdateCVE-2024-23593 Lenovo: CVE-2024-23593 Modify Boot Manager and Escalate Privileges14-05-2024426
MSRC Security UpdateCVE-2024-26207 Windows Remote Access Connection Manager Information Disclosure Vulnerability14-05-2024427
MSRC Security UpdateCVE-2024-26211 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability14-05-2024428
MSRC Security UpdateCVE-2024-26217 Windows Remote Access Connection Manager Information Disclosure Vulnerability14-05-2024429
MSRC Security UpdateCVE-2024-28900 Windows Remote Access Connection Manager Information Disclosure Vulnerability14-05-2024430
MSRC Security UpdateCVE-2024-30042 Microsoft Excel Remote Code Execution Vulnerability14-05-2024431
MSRC Security UpdateCVE-2024-30054 Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability14-05-2024432
MSRC Security UpdateCVE-2024-30040 Windows MSHTML Platform Security Feature Bypass Vulnerability14-05-2024433
MSRC Security UpdateCVE-2024-30030 Win32k Elevation of Privilege Vulnerability14-05-2024434
MSRC Security UpdateCVE-2024-30039 Windows Remote Access Connection Manager Information Disclosure Vulnerability14-05-2024435
MSRC Security UpdateCVE-2024-29994 Microsoft Windows SCSI Class System File Elevation of Privilege Vulnerability14-05-2024436
MSRC Security UpdateCVE-2024-30024 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024437
MSRC Security UpdateCVE-2024-30025 Windows Common Log File System Driver Elevation of Privilege Vulnerability14-05-2024438
MSRC Security UpdateCVE-2024-30027 NTFS Elevation of Privilege Vulnerability14-05-2024439
MSRC Security UpdateCVE-2024-30028 Win32k Elevation of Privilege Vulnerability14-05-2024440
MSRC Security UpdateCVE-2024-30029 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability14-05-2024441
MSRC Security UpdateCVE-2024-30031 Windows CNG Key Isolation Service Elevation of Privilege Vulnerability14-05-2024442
MSRC Security UpdateCVE-2024-30032 Windows DWM Core Library Elevation of Privilege Vulnerability14-05-2024443
MSRC Security UpdateCVE-2024-30033 Windows Search Service Elevation of Privilege Vulnerability14-05-2024444
MSRC Security UpdateCVE-2024-30034 Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability14-05-2024445
MSRC Security UpdateCVE-2024-30036 Windows Deployment Services Information Disclosure Vulnerability14-05-2024446
MSRC Security UpdateCVE-2024-30037 Windows Common Log File System Driver Elevation of Privilege Vulnerability14-05-2024447
MSRC Security UpdateCVE-2024-30038 Win32k Elevation of Privilege Vulnerability14-05-2024448
Consiglio Federale CH Swiss IGF: dibattiti sull'intelligenza artificiale e la sua regolamentazione 14-05-2024449
Center of Internet SecurityMultiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution13-05-2024450
CSIRT ITAggiornamenti di sicurezza per Vercel Next.js (AL03/240513/CSIRT-ITA)13-05-2024451
CSIRT ITSanate vulnerabilità su Cacti (AL02/240513/CSIRT-ITA)13-05-2024452
CSIRT ITVulnerabilità in prodotti Solarwinds (AL01/240513/CSIRT-ITA)13-05-2024453
CSIRT ITRisolta vulnerabilità 0-day in Google Chrome (AL02/240510/CSIRT-ITA)13-05-2024454
CSIRT ITVulnerabilità in PuTTY (AL01/240416/CSIRT-ITA) - Aggiornamento13-05-2024455
Unit42Leveraging DNS Tunneling for Tracking and Scanning13-05-2024456
CSIRT ITLa Settimana Cibernetica del 12 maggio 202413-05-2024457
Consiglio Federale CH Il consigliere federale Ignazio Cassis alla riunione ministeriale del Consiglio d’Europa a Strasburgo 13-05-2024458
MSRC Security UpdateChromium: CVE-2024-4671 Use after free in Visuals10-05-2024459
CSIRT ITSanate vulnerabilità su GitLab CE/EE (AL03/240510/CSIRT-ITA)10-05-2024460
CSIRT ITRisolte vulnerabilità in F5 BIG-IP (AL01/240510/CSIRT-ITA)10-05-2024461
MSRC Security UpdateChromium: CVE-2024-4559 Heap buffer overflow in WebAudio10-05-2024462
MSRC Security UpdateChromium: CVE-2024-4558 Use after free in ANGLE10-05-2024463
MSRC Security UpdateCVE-2024-30055 Microsoft Edge (Chromium-based) Spoofing Vulnerability10-05-2024464
Center of Internet SecurityA Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution09-05-2024465
Center of Internet SecurityA Vulnerability in Apache OFBiz Could Allow for Remote Code Execution09-05-2024466
Center of Internet SecurityA Vulnerability in F5 BIG-IP Next Central Manager Could Allow for Remote Code Execution09-05-2024467
NCSCDecrypting diversity: Diversity and inclusion in cyber security report 202009-05-2024468
NCSCDecrypting diversity: Diversity and inclusion in cyber security report 202109-05-2024469
CSIRT ITVulnerabilità in Veeam Service Provider Console (VSPC) (AL02/240508/CSIRT-ITA)08-05-2024470
CSIRT ITRisolte vulnerabilità in Google Chrome (AL01/240508/CSIRT-ITA)08-05-2024471
MSRC Security UpdateCVE-2024-29059 .NET Framework Information Disclosure Vulnerability08-05-2024472
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution07-05-2024473
Center of Internet SecurityA Vulnerability in Mozilla PDF.js Could Allow for Arbitrary Code Execution07-05-2024474
CSIRT ITPoC pubblico per lo sfruttamento della CVE-2023-49606 relativa a Tinyproxy (AL02/240507/CSIRT-ITA)07-05-2024475
Center of Internet SecurityMultiple Vulnerabilities in Google Android OS Could Allow for Privilege Escalation06-05-2024476
MSRC Security UpdateCVE-2023-24948 Windows Bluetooth Driver Elevation of Privilege Vulnerability06-05-2024477
Consiglio Federale CH Progetto pilota per l’Id-e: licenza digitale per allievo conducente nel Cantone di Appenzello Esterno 03-05-2024478
MSRC Security UpdateChromium: CVE-2024-4368 Use after free in Dawn02-05-2024479
MSRC Security UpdateChromium: CVE-2024-4331 Use after free in Picture In Picture02-05-2024480
Consiglio Federale CH Conclusione dell’inchiesta amministrativa concernente l’attacco hacker contro Xplain: il Consiglio federale decide misure 01-05-2024481
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution30-04-2024482
MSRC Security UpdateChromium: CVE-2024-4060 Use after free in Dawn26-04-2024483
MSRC Security UpdateChromium: CVE-2024-4059 Out of bounds read in V8 API26-04-2024484
MSRC Security UpdateChromium: CVE-2024-4058 Type Confusion in ANGLE26-04-2024485
FR-CERT AlertesMultiples vulnérabilités dans les produits Cisco (25 avril 2024)25-04-2024486
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution24-04-2024487
MSRC Security UpdateCVE-2024-26198 Microsoft Exchange Server Remote Code Execution Vulnerability23-04-2024488
MSRC Security UpdateCVE-2024-29991 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability19-04-2024489
MSRC Security UpdateChromium: CVE-2024-3847 Insufficient policy enforcement in WebUI18-04-2024490
MSRC Security UpdateChromium: CVE-2024-3846 Inappropriate implementation in Prompts18-04-2024491
MSRC Security UpdateChromium: CVE-2024-3845 Inappropriate implementation in Network18-04-2024492
MSRC Security UpdateChromium: CVE-2024-3844 Inappropriate implementation in Extensions18-04-2024493
MSRC Security UpdateChromium: CVE-2024-3843 Insufficient data validation in Downloads18-04-2024494
MSRC Security UpdateChromium: CVE-2024-3841 Insufficient data validation in Browser Switcher18-04-2024495
MSRC Security UpdateChromium: CVE-2024-3840 Insufficient policy enforcement in Site Isolation18-04-2024496
MSRC Security UpdateChromium: CVE-2024-3839 Out of bounds read in Fonts18-04-2024497
MSRC Security UpdateChromium: CVE-2024-3838 Inappropriate implementation in Autofill18-04-2024498
MSRC Security UpdateChromium: CVE-2024-3837 Use after free in QUIC18-04-2024499
MSRC Security UpdateChromium: CVE-2024-3834 Use after free in Downloads18-04-2024500
MSRC Security UpdateChromium: CVE-2024-3914 Use after free in V818-04-2024501
MSRC Security UpdateChromium: CVE-2024-3833 Object corruption in WebAssembly18-04-2024502
MSRC Security UpdateChromium: CVE-2024-3832 Object corruption in V818-04-2024503
MSRC Security UpdateCVE-2024-28937 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024504
MSRC Security UpdateCVE-2024-28941 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024505
MSRC Security UpdateCVE-2024-28938 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024506
MSRC Security UpdateCVE-2024-28940 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024507
MSRC Security UpdateCVE-2024-28934 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024508
MSRC Security UpdateCVE-2024-28943 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024509
MSRC Security UpdateCVE-2024-28944 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024510
MSRC Security UpdateCVE-2024-29044 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024511
MSRC Security UpdateCVE-2024-29046 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024512
MSRC Security UpdateCVE-2024-29982 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024513
MSRC Security UpdateCVE-2024-29983 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024514
MSRC Security UpdateCVE-2024-29984 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024515
MSRC Security UpdateCVE-2024-29985 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024516
MSRC Security UpdateCVE-2024-29987 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability18-04-2024517
MSRC Security UpdateCVE-2024-29986 Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability18-04-2024518
MSRC Security UpdateCVE-2024-28935 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024519
MSRC Security UpdateCVE-2024-29048 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024520
MSRC Security UpdateCVE-2024-28933 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024521
MSRC Security UpdateCVE-2024-28936 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024522
MSRC Security UpdateCVE-2024-28906 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024523
MSRC Security UpdateCVE-2024-28908 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024524
MSRC Security UpdateCVE-2024-28909 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024525
MSRC Security UpdateCVE-2024-28910 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024526
MSRC Security UpdateCVE-2024-28911 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024527
MSRC Security UpdateCVE-2024-28912 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024528
MSRC Security UpdateCVE-2024-28913 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024529
MSRC Security UpdateCVE-2024-28914 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024530
MSRC Security UpdateCVE-2024-28915 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024531
MSRC Security UpdateCVE-2024-28929 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024532
MSRC Security UpdateCVE-2024-21409 .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability18-04-2024533
MSRC Security UpdateCVE-2024-28931 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024534
MSRC Security UpdateCVE-2024-28932 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024535
MSRC Security UpdateCVE-2024-28939 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024536
MSRC Security UpdateCVE-2024-28942 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024537
MSRC Security UpdateCVE-2024-28930 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024538
MSRC Security UpdateCVE-2024-28945 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024539
MSRC Security UpdateCVE-2024-29043 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability18-04-2024540
MSRC Security UpdateCVE-2024-29045 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024541
MSRC Security UpdateCVE-2024-29047 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024542
MSRC Security UpdateCVE-2024-28927 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024543
MSRC Security UpdateCVE-2024-28926 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability18-04-2024544
Center of Internet SecurityOracle Quarterly Critical Patches Issued April 16, 202417-04-2024545
Center of Internet SecurityMultiple Vulnerabilities in Ivanti Avalanche Could Allow for Remote Code Execution17-04-2024546
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Remote Code Execution17-04-2024547
Microsoft SecurityCongratulations to the Top MSRC 2024 Q1 Security Researchers! 17-04-2024548
Center of Internet SecurityMultiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution16-04-2024549
MSRC Security UpdateCVE-2024-26257 Microsoft Excel Remote Code Execution Vulnerability16-04-2024550
Consiglio Federale CH La Cancelleria federale avvia una consultazione sul promovimento di progetti di digitalizzazione 16-04-2024551
Unit42Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated May 20)12-04-2024552
Center of Internet SecurityA Vulnerability in PAN-OS Could Allow for Arbitrary Code Execution12-04-2024553
MSRC Security UpdateChromium: CVE-2024-3157 Out of bounds write in Compositing12-04-2024554
MSRC Security UpdateChromium: CVE-2024-3516 Heap buffer overflow in ANGLE12-04-2024555
MSRC Security UpdateChromium: CVE-2024-3515 Use after free in Dawn12-04-2024556
FR-CERT Alertes[MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect (12 avril 2024)12-04-2024557
MSRC Security UpdateCVE-2024-21323 Microsoft Defender for IoT Remote Code Execution Vulnerability11-04-2024558
MSRC Security UpdateCVE-2024-29054 Microsoft Defender for IoT Elevation of Privilege Vulnerability11-04-2024559
MSRC Security UpdateCVE-2024-29053 Microsoft Defender for IoT Remote Code Execution Vulnerability11-04-2024560
MSRC Security UpdateCVE-2024-26234 Proxy Driver Spoofing Vulnerability11-04-2024561
MSRC Security UpdateCVE-2024-29055 Microsoft Defender for IoT Elevation of Privilege Vulnerability11-04-2024562
MSRC Security UpdateCVE-2024-21322 Microsoft Defender for IoT Remote Code Execution Vulnerability11-04-2024563
MSRC Security UpdateCVE-2022-0001 Intel: CVE-2022-0001 Branch History Injection11-04-2024564
MSRC Security UpdateCVE-2024-21324 Microsoft Defender for IoT Elevation of Privilege Vulnerability11-04-2024565
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution10-04-2024566
Consiglio Federale CH René Dönni Kuoni nuovo direttore supplente dell'UFCOM 10-04-2024567
Center of Internet SecurityMultiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution09-04-2024568
Center of Internet SecurityCritical Patches Issued for Microsoft Products, April 09, 202409-04-2024569
Unit42Muddled Libra’s Evolution to the Cloud09-04-2024570
MSRC Security UpdateCVE-2024-29063 Azure AI Search Information Disclosure Vulnerability09-04-2024571
MSRC Security UpdateCVE-2024-20685 Azure Private 5G Core Denial of Service Vulnerability09-04-2024572
MSRC Security UpdateCVE-2024-29066 Windows Distributed File System (DFS) Remote Code Execution Vulnerability09-04-2024573
MSRC Security UpdateCVE-2024-29064 Windows Hyper-V Denial of Service Vulnerability09-04-2024574
MSRC Security UpdateCVE-2024-28898 Secure Boot Security Feature Bypass Vulnerability09-04-2024575
MSRC Security UpdateCVE-2024-29050 Windows Cryptographic Services Remote Code Execution Vulnerability09-04-2024576
MSRC Security UpdateCVE-2024-28905 Microsoft Brokering File System Elevation of Privilege Vulnerability09-04-2024577
MSRC Security UpdateCVE-2024-28903 Secure Boot Security Feature Bypass Vulnerability09-04-2024578
MSRC Security UpdateCVE-2024-28902 Windows Remote Access Connection Manager Information Disclosure Vulnerability09-04-2024579
MSRC Security UpdateCVE-2024-23594 Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot manager09-04-2024580
MSRC Security UpdateCVE-2024-23593 Lenovo: CVE-2024-23593 Zero Out Boot Manager and drop to UEFI Shell09-04-2024581
MSRC Security UpdateCVE-2024-26180 Secure Boot Security Feature Bypass Vulnerability09-04-2024582
MSRC Security UpdateCVE-2024-29988 SmartScreen Prompt Security Feature Bypass Vulnerability09-04-2024583
MSRC Security UpdateCVE-2024-29990 Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability09-04-2024584
MSRC Security UpdateADV990001 Latest Servicing Stack Updates09-04-2024585
MSRC Security UpdateCVE-2024-20689 Secure Boot Security Feature Bypass Vulnerability09-04-2024586
MSRC Security UpdateCVE-2024-26168 Secure Boot Security Feature Bypass Vulnerability09-04-2024587
MSRC Security UpdateCVE-2024-26175 Secure Boot Security Feature Bypass Vulnerability09-04-2024588
MSRC Security UpdateCVE-2024-26195 DHCP Server Service Remote Code Execution Vulnerability09-04-2024589
MSRC Security UpdateCVE-2024-26183 Windows Kerberos Denial of Service Vulnerability09-04-2024590
MSRC Security UpdateCVE-2024-26189 Secure Boot Security Feature Bypass Vulnerability09-04-2024591
MSRC Security UpdateCVE-2024-26194 Secure Boot Security Feature Bypass Vulnerability09-04-2024592
MSRC Security UpdateCVE-2024-28901 Windows Remote Access Connection Manager Information Disclosure Vulnerability09-04-2024593
MSRC Security UpdateCVE-2024-26193 Azure Migrate Remote Code Execution Vulnerability09-04-2024594
MSRC Security UpdateCVE-2024-28896 Secure Boot Security Feature Bypass Vulnerability09-04-2024595
MSRC Security UpdateCVE-2024-26254 Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability09-04-2024596
MSRC Security UpdateCVE-2024-26209 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability09-04-2024597
MSRC Security UpdateCVE-2024-20688 Secure Boot Security Feature Bypass Vulnerability09-04-2024598
MSRC Security UpdateCVE-2024-20693 Windows Kernel Elevation of Privilege Vulnerability09-04-2024599
MSRC Security UpdateCVE-2024-20669 Secure Boot Security Feature Bypass Vulnerability09-04-2024600
MSRC Security UpdateCVE-2024-20665 BitLocker Security Feature Bypass Vulnerability09-04-2024601
MSRC Security UpdateCVE-2024-20678 Remote Procedure Call Runtime Remote Code Execution Vulnerability09-04-2024602
MSRC Security UpdateCVE-2024-21424 Azure Compute Gallery Elevation of Privilege Vulnerability09-04-2024603
MSRC Security UpdateCVE-2024-21447 Windows Authentication Elevation of Privilege Vulnerability09-04-2024604
MSRC Security UpdateCVE-2024-26250 Secure Boot Security Feature Bypass Vulnerability09-04-2024605
MSRC Security UpdateCVE-2024-26253 Windows rndismp6.sys Remote Code Execution Vulnerability09-04-2024606
MSRC Security UpdateCVE-2024-26255 Windows Remote Access Connection Manager Information Disclosure Vulnerability09-04-2024607
MSRC Security UpdateCVE-2024-28923 Secure Boot Security Feature Bypass Vulnerability09-04-2024608
MSRC Security UpdateCVE-2024-26256 libarchive Remote Code Execution Vulnerability09-04-2024609
MSRC Security UpdateCVE-2024-26172 Windows DWM Core Library Information Disclosure Vulnerability09-04-2024610
MSRC Security UpdateCVE-2024-26179 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability09-04-2024611
MSRC Security UpdateCVE-2024-26200 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability09-04-2024612
MSRC Security UpdateCVE-2024-26205 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability09-04-2024613
MSRC Security UpdateCVE-2024-26158 Microsoft Install Service Elevation of Privilege Vulnerability09-04-2024614
MSRC Security UpdateCVE-2024-26232 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability09-04-2024615
MSRC Security UpdateCVE-2024-28920 Secure Boot Security Feature Bypass Vulnerability09-04-2024616
MSRC Security UpdateCVE-2024-28922 Secure Boot Security Feature Bypass Vulnerability09-04-2024617
MSRC Security UpdateCVE-2024-28921 Secure Boot Security Feature Bypass Vulnerability09-04-2024618
MSRC Security UpdateCVE-2024-28919 Secure Boot Security Feature Bypass Vulnerability09-04-2024619
MSRC Security UpdateCVE-2024-26202 DHCP Server Service Remote Code Execution Vulnerability09-04-2024620
MSRC Security UpdateCVE-2024-26252 Windows rndismp6.sys Remote Code Execution Vulnerability09-04-2024621
MSRC Security UpdateCVE-2024-26218 Windows Kernel Elevation of Privilege Vulnerability09-04-2024622
MSRC Security UpdateCVE-2024-28900 Windows Remote Access Connection Manager Information Disclosure Vulnerability09-04-2024623
MSRC Security UpdateCVE-2024-26217 Windows Remote Access Connection Manager Information Disclosure Vulnerability09-04-2024624
MSRC Security UpdateCVE-2024-26226 Windows Distributed File System (DFS) Information Disclosure Vulnerability09-04-2024625
MSRC Security UpdateCVE-2024-26228 Windows Cryptographic Services Security Feature Bypass Vulnerability09-04-2024626
MSRC Security UpdateCVE-2024-26230 Windows Telephony Server Elevation of Privilege Vulnerability09-04-2024627
MSRC Security UpdateCVE-2024-26239 Windows Telephony Server Elevation of Privilege Vulnerability09-04-2024628
MSRC Security UpdateCVE-2024-26240 Secure Boot Security Feature Bypass Vulnerability09-04-2024629
MSRC Security UpdateCVE-2024-26251 Microsoft SharePoint Server Spoofing Vulnerability09-04-2024630
MSRC Security UpdateCVE-2024-28924 Secure Boot Security Feature Bypass Vulnerability09-04-2024631
MSRC Security UpdateCVE-2024-28925 Secure Boot Security Feature Bypass Vulnerability09-04-2024632
MSRC Security UpdateCVE-2024-28897 Secure Boot Security Feature Bypass Vulnerability09-04-2024633
MSRC Security UpdateCVE-2024-28904 Microsoft Brokering File System Elevation of Privilege Vulnerability09-04-2024634
MSRC Security UpdateCVE-2024-26215 DHCP Server Service Denial of Service Vulnerability09-04-2024635
MSRC Security UpdateCVE-2024-28907 Microsoft Brokering File System Elevation of Privilege Vulnerability09-04-2024636
MSRC Security UpdateCVE-2024-28917 Azure Arc-enabled Kubernetes Extension Cluster-Scope Elevation of Privilege Vulnerability09-04-2024637
MSRC Security UpdateCVE-2024-29052 Windows Storage Elevation of Privilege Vulnerability09-04-2024638
MSRC Security UpdateCVE-2024-29056 Windows Authentication Elevation of Privilege Vulnerability09-04-2024639
MSRC Security UpdateCVE-2024-29061 Secure Boot Security Feature Bypass Vulnerability09-04-2024640
MSRC Security UpdateCVE-2024-29062 Secure Boot Security Feature Bypass Vulnerability09-04-2024641
MSRC Security UpdateCVE-2024-20670 Outlook for Windows Spoofing Vulnerability09-04-2024642
MSRC Security UpdateCVE-2024-29989 Azure Monitor Agent Elevation of Privilege Vulnerability09-04-2024643
MSRC Security UpdateCVE-2024-29992 Azure Identity Library for .NET Information Disclosure Vulnerability09-04-2024644
MSRC Security UpdateCVE-2024-29993 Azure CycleCloud Elevation of Privilege Vulnerability09-04-2024645
MSRC Security UpdateCVE-2024-26219 HTTP.sys Denial of Service Vulnerability09-04-2024646
MSRC Security UpdateCVE-2024-26216 Windows File Server Resource Management Service Elevation of Privilege Vulnerability09-04-2024647
MSRC Security UpdateCVE-2024-26171 Secure Boot Security Feature Bypass Vulnerability09-04-2024648
MSRC Security UpdateCVE-2024-26214 Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability09-04-2024649
MSRC Security UpdateCVE-2024-26248 Windows Kerberos Elevation of Privilege Vulnerability09-04-2024650
MSRC Security UpdateCVE-2024-26220 Windows Mobile Hotspot Information Disclosure Vulnerability09-04-2024651
MSRC Security UpdateCVE-2024-26213 Microsoft Brokering File System Elevation of Privilege Vulnerability09-04-2024652
MSRC Security UpdateCVE-2024-26221 Windows DNS Server Remote Code Execution Vulnerability09-04-2024653
MSRC Security UpdateCVE-2024-26222 Windows DNS Server Remote Code Execution Vulnerability09-04-2024654
MSRC Security UpdateCVE-2024-26223 Windows DNS Server Remote Code Execution Vulnerability09-04-2024655
MSRC Security UpdateCVE-2024-26224 Windows DNS Server Remote Code Execution Vulnerability09-04-2024656
MSRC Security UpdateCVE-2024-26227 Windows DNS Server Remote Code Execution Vulnerability09-04-2024657
MSRC Security UpdateCVE-2024-26231 Windows DNS Server Remote Code Execution Vulnerability09-04-2024658
MSRC Security UpdateCVE-2024-26233 Windows DNS Server Remote Code Execution Vulnerability09-04-2024659
MSRC Security UpdateCVE-2024-26243 Windows USB Print Driver Elevation of Privilege Vulnerability09-04-2024660
MSRC Security UpdateCVE-2024-26241 Win32k Elevation of Privilege Vulnerability09-04-2024661
MSRC Security UpdateCVE-2024-26210 Microsoft WDAC OLE DB Provider for SQL Server Remote Code Execution Vulnerability09-04-2024662
MSRC Security UpdateCVE-2024-26245 Windows SMB Elevation of Privilege Vulnerability09-04-2024663
MSRC Security UpdateCVE-2024-26212 DHCP Server Service Denial of Service Vulnerability09-04-2024664
MSRC Security UpdateCVE-2024-26211 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability09-04-2024665
MSRC Security UpdateCVE-2024-26229 Windows CSC Service Elevation of Privilege Vulnerability09-04-2024666
MSRC Security UpdateCVE-2024-26207 Windows Remote Access Connection Manager Information Disclosure Vulnerability09-04-2024667
MSRC Security UpdateCVE-2024-26208 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability09-04-2024668
MSRC Security UpdateCVE-2024-26244 Microsoft WDAC OLE DB Provider for SQL Server Remote Code Execution Vulnerability09-04-2024669
MSRC Security UpdateCVE-2024-26242 Windows Telephony Server Elevation of Privilege Vulnerability09-04-2024670
MSRC Security UpdateCVE-2024-26237 Windows Defender Credential Guard Elevation of Privilege Vulnerability09-04-2024671
MSRC Security UpdateCVE-2024-26236 Windows Update Stack Elevation of Privilege Vulnerability09-04-2024672
MSRC Security UpdateCVE-2024-26235 Windows Update Stack Elevation of Privilege Vulnerability09-04-2024673
Unit42It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise08-04-2024674
Microsoft SecurityToward greater transparency: Adopting the CWE standard for Microsoft CVEs08-04-2024675
Center of Internet SecurityA Vulnerability in Broadcom Brocade Fabric OS Could Allow for Arbitrary Code Execution05-04-2024676
MSRC Security UpdateChromium: CVE-2024-3159 Out of bounds memory access in V804-04-2024677
MSRC Security UpdateChromium: CVE-2024-3158 Use after free in Bookmarks04-04-2024678
MSRC Security UpdateChromium: CVE-2024-3156 Inappropriate implementation in V804-04-2024679
MSRC Security UpdateCVE-2024-29981 Microsoft Edge (Chromium-based) Spoofing Vulnerability04-04-2024680
MSRC Security UpdateCVE-2024-29049 Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability04-04-2024681
Consiglio Federale CH «Promuovete la vostra salute digitale» - lancio della campagna nazionale di sensibilizzazione alla cibersicurezza incentrata sugli aggiornamenti e sulla protezione antivirus 04-04-2024682
Microsoft SecurityEmbracing innovation: Derrick’s transition from banking to Microsoft’s Threat Intelligence team02-04-2024683
MSRC Security UpdateChromium: CVE-2024-2883 Use after free in ANGLE01-04-2024684
Unit42Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094)31-03-2024685
Center of Internet SecurityA Vulnerability in XZ Utils Could Allow for Remote Code Execution29-03-2024686
Unit42Exposing a New BOLA Vulnerability in Grafana27-03-2024687
Google TAGA review of zero-day in-the-wild exploits in 202327-03-2024688
MSRC Security UpdateChromium: CVE-2024-2885 Use after free in Dawn27-03-2024689
MSRC Security UpdateChromium: CVE-2024-2886 Use after free in WebCodecs27-03-2024690
MSRC Security UpdateChromium: CVE-2024-2887 Type Confusion in WebAssembly27-03-2024691
MSRC Security UpdateChromium: CVE-2024-2883 Use after free in ANGLE27-03-2024692
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution27-03-2024693
Consiglio Federale CH Mondo del lavoro digitalizzato: opportunità e rischi per le persone con disabilità 27-03-2024694
Unit42ASEAN Entities in the Spotlight: Chinese APT Group Targeting26-03-2024695
Center of Internet SecurityA Vulnerability in Multiple Apple Products Could Allow for Arbitrary Code Execution.26-03-2024696
Unit42Large-Scale StrelaStealer Campaign in Early 202422-03-2024697
MSRC Security UpdateChromium: CVE-2024-2631 Inappropriate implementation in iOS22-03-2024698
MSRC Security UpdateChromium: CVE-2024-2629 Incorrect security UI in iOS22-03-2024699
MSRC Security UpdateChromium: CVE-2024-2628 Inappropriate implementation in Downloads22-03-2024700
MSRC Security UpdateChromium: CVE-2024-2627 Use after free in Canvas22-03-2024701
MSRC Security UpdateChromium: CVE-2024-2626 Out of bounds read in Swiftshader22-03-2024702
MSRC Security UpdateChromium: CVE-2024-2625 Object lifecycle issue in V822-03-2024703
MSRC Security UpdateCVE-2024-29057 Microsoft Edge (Chromium-based) Spoofing Vulnerability22-03-2024704
MSRC Security UpdateCVE-2024-26247 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability22-03-2024705
MSRC Security UpdateCVE-2024-28916 Xbox Gaming Services Elevation of Privilege Vulnerability22-03-2024706
MSRC Security UpdateCVE-2024-29059 .NET Framework Information Disclosure Vulnerability22-03-2024707
MSRC Security UpdateChromium: CVE-2024-2630 Inappropriate implementation in iOS22-03-2024708
Unit42Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention21-03-2024709
MSRC Security UpdateCVE-2024-21329 Azure Connected Machine Agent Elevation of Privilege Vulnerability20-03-2024710
Center of Internet SecurityMultiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution19-03-2024711
Center of Internet SecurityFortinet Releases Security Updates for Multiple Products.19-03-2024712
Unit42Unit 42 Collaborative Research With Ukraine’s Cyber Agency To Uncover the Smoke Loader Backdoor19-03-2024713
Consiglio Federale CH Circa l’80 per cento delle esecuzioni è espletato online 19-03-2024714
Unit42Inside the Rabbit Hole: BunnyLoader 3.0 Unveiled15-03-2024715
MSRC Security UpdateCVE-2024-26163 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability15-03-2024716
MSRC Security UpdateCVE-2024-26246 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability15-03-2024717
Consiglio Federale CH Mercato delle telecomunicazioni: concorrenza stabile 15-03-2024718
Consiglio Federale CH Procedimenti civili transfrontalieri: impiego agevolato della comunicazione elettronica 15-03-2024719
MSRC Security UpdateChromium: CVE-2024-2400 Use after free in Performance Manager14-03-2024720
MSRC Security UpdateCVE-2024-26163 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability14-03-2024721
MSRC Security UpdateCVE-2024-26246 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability14-03-2024722
MSRC Security UpdateCVE-2024-26167 Microsoft Edge for Android Spoofing Vulnerability14-03-2024723
MSRC Security UpdateCVE-2024-26201 Microsoft Intune Linux Agent Elevation of Privilege Vulnerability14-03-2024724
Consiglio Federale CH La Cancelleria federale pubblica l’aggiudicazione relativa al bando OMC «ALPIN 3.0» 13-03-2024725
Center of Internet SecurityMultiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution12-03-2024726
Center of Internet SecurityCritical Patches Issued for Microsoft Products, March 13, 202412-03-2024727
MSRC Security UpdateCVE-2024-21432 Windows Update Stack Elevation of Privilege Vulnerability12-03-2024728
MSRC Security UpdateCVE-2024-21433 Windows Print Spooler Elevation of Privilege Vulnerability12-03-2024729
MSRC Security UpdateCVE-2024-21434 Microsoft Windows SCSI Class System File Elevation of Privilege Vulnerability12-03-2024730
MSRC Security UpdateCVE-2024-21435 Windows OLE Remote Code Execution Vulnerability12-03-2024731
MSRC Security UpdateCVE-2024-21437 Windows Graphics Component Elevation of Privilege Vulnerability12-03-2024732
MSRC Security UpdateCVE-2024-21440 Microsoft ODBC Driver Remote Code Execution Vulnerability12-03-2024733
MSRC Security UpdateCVE-2024-21448 Microsoft Teams for Android Information Disclosure Vulnerability12-03-2024734
MSRC Security UpdateCVE-2024-26160 Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability12-03-2024735
MSRC Security UpdateCVE-2024-26162 Microsoft ODBC Driver Remote Code Execution Vulnerability12-03-2024736
MSRC Security UpdateCVE-2024-26166 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability12-03-2024737
MSRC Security UpdateCVE-2024-26169 Windows Error Reporting Service Elevation of Privilege Vulnerability12-03-2024738
MSRC Security UpdateCVE-2024-26170 Windows Composite Image File System (CimFS) Elevation of Privilege Vulnerability12-03-2024739
MSRC Security UpdateCVE-2024-21436 Windows Installer Elevation of Privilege Vulnerability12-03-2024740
MSRC Security UpdateCVE-2024-21426 Microsoft SharePoint Server Remote Code Execution Vulnerability12-03-2024741
MSRC Security UpdateCVE-2024-26173 Windows Kernel Elevation of Privilege Vulnerability12-03-2024742
MSRC Security UpdateCVE-2024-21427 Windows Kerberos Security Feature Bypass Vulnerability12-03-2024743
MSRC Security UpdateCVE-2024-26174 Windows Kernel Information Disclosure Vulnerability12-03-2024744
MSRC Security UpdateCVE-2024-26176 Windows Kernel Elevation of Privilege Vulnerability12-03-2024745
MSRC Security UpdateCVE-2024-26177 Windows Kernel Information Disclosure Vulnerability12-03-2024746
MSRC Security UpdateCVE-2024-26178 Windows Kernel Elevation of Privilege Vulnerability12-03-2024747
MSRC Security UpdateCVE-2024-26181 Windows Kernel Denial of Service Vulnerability12-03-2024748
MSRC Security UpdateCVE-2024-26182 Windows Kernel Elevation of Privilege Vulnerability12-03-2024749
MSRC Security UpdateCVE-2024-26185 Windows Compressed Folder Tampering Vulnerability12-03-2024750
MSRC Security UpdateCVE-2023-28746 Intel: CVE-2023-28746 Register File Data Sampling (RFDS)12-03-2024751
MSRC Security UpdateCVE-2024-26204 Outlook for Android Information Disclosure Vulnerability12-03-2024752
MSRC Security UpdateCVE-2024-26165 Visual Studio Code Elevation of Privilege Vulnerability12-03-2024753
MSRC Security UpdateCVE-2023-36866 Microsoft Office Visio Remote Code Execution Vulnerability12-03-2024754
MSRC Security UpdateCVE-2023-35372 Microsoft Office Visio Remote Code Execution Vulnerability12-03-2024755
MSRC Security UpdateCVE-2024-21431 Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability12-03-2024756
MSRC Security UpdateCVE-2024-21408 Windows Hyper-V Denial of Service Vulnerability12-03-2024757
MSRC Security UpdateCVE-2024-21419 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability12-03-2024758
MSRC Security UpdateCVE-2024-20671 Microsoft Defender Security Feature Bypass Vulnerability12-03-2024759
MSRC Security UpdateCVE-2024-21430 Windows USB Attached SCSI (UAS) Protocol Remote Code Execution Vulnerability12-03-2024760
MSRC Security UpdateCVE-2024-21438 Microsoft AllJoyn API Denial of Service Vulnerability12-03-2024761
MSRC Security UpdateCVE-2024-21439 Windows Telephony Server Elevation of Privilege Vulnerability12-03-2024762
MSRC Security UpdateCVE-2024-21441 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability12-03-2024763
MSRC Security UpdateCVE-2024-21442 Windows USB Print Driver Elevation of Privilege Vulnerability12-03-2024764
MSRC Security UpdateCVE-2024-21443 Windows Kernel Elevation of Privilege Vulnerability12-03-2024765
MSRC Security UpdateCVE-2024-21444 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability12-03-2024766
MSRC Security UpdateCVE-2024-21445 Windows USB Print Driver Elevation of Privilege Vulnerability12-03-2024767
MSRC Security UpdateCVE-2024-21446 NTFS Elevation of Privilege Vulnerability12-03-2024768
MSRC Security UpdateCVE-2024-21450 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability12-03-2024769
MSRC Security UpdateCVE-2024-21421 Azure SDK Spoofing Vulnerability12-03-2024770
MSRC Security UpdateCVE-2024-21418 Software for Open Networking in the Cloud (SONiC) Elevation of Privilege Vulnerability12-03-2024771
MSRC Security UpdateCVE-2024-21392 .NET and Visual Studio Denial of Service Vulnerability12-03-2024772
MSRC Security UpdateADV990001 Latest Servicing Stack Updates12-03-2024773
MSRC Security UpdateCVE-2024-21429 Windows USB Hub Driver Remote Code Execution Vulnerability12-03-2024774
MSRC Security UpdateCVE-2024-21451 Microsoft ODBC Driver Remote Code Execution Vulnerability12-03-2024775
MSRC Security UpdateCVE-2024-26197 Windows Standards-Based Storage Management Service Denial of Service Vulnerability12-03-2024776
MSRC Security UpdateCVE-2024-26159 Microsoft ODBC Driver Remote Code Execution Vulnerability12-03-2024777
MSRC Security UpdateCVE-2024-26190 Microsoft QUIC Denial of Service Vulnerability12-03-2024778
MSRC Security UpdateCVE-2024-26198 Microsoft Exchange Server Remote Code Execution Vulnerability12-03-2024779
MSRC Security UpdateCVE-2024-26199 Microsoft Office Elevation of Privilege Vulnerability12-03-2024780
MSRC Security UpdateCVE-2024-26201 Microsoft Intune Linux Agent Elevation of Privilege Vulnerability12-03-2024781
MSRC Security UpdateCVE-2024-26203 Azure Data Studio Elevation of Privilege Vulnerability12-03-2024782
MSRC Security UpdateCVE-2024-26161 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability12-03-2024783
MSRC Security UpdateCVE-2024-26164 Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability12-03-2024784
MSRC Security UpdateCVE-2024-21330 Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability12-03-2024785
MSRC Security UpdateCVE-2024-21390 Microsoft Authenticator Elevation of Privilege Vulnerability12-03-2024786
MSRC Security UpdateCVE-2024-21400 Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability12-03-2024787
MSRC Security UpdateCVE-2024-21407 Windows Hyper-V Remote Code Execution Vulnerability12-03-2024788
MSRC Security UpdateCVE-2024-21411 Skype for Consumer Remote Code Execution Vulnerability12-03-2024789
MSRC Security UpdateCVE-2024-21334 Open Management Infrastructure (OMI) Remote Code Execution Vulnerability12-03-2024790
Unit42Threat Group Assessment: Muddled Libra (Updated)08-03-2024791
Microsoft SecurityUpdate on Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard08-03-2024792
MSRC Security UpdateCVE-2024-217607-03-2024793
MSRC Security UpdateCVE-2024-217407-03-2024794
MSRC Security UpdateCVE-2024-217307-03-2024795
MSRC Security UpdateCVE-2024-26167 Microsoft Edge for Android Spoofing Vulnerability07-03-2024796
Consiglio Federale CH Attacco hacker contro Xplain: l’Ufficio federale della cibersicurezza pubblica un rapporto sull’analisi dei dati 07-03-2024797
Google TAGTAG Bulletin: Q1 202406-03-2024798
Center of Internet SecurityMultiple Vulnerabilities in Apple Products Could Allow for Privilege Escalation.05-03-2024799
MSRC Security UpdateCVE-2024-21378 Microsoft Outlook Remote Code Execution Vulnerability05-03-2024800
Center of Internet SecurityMultiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution05-03-2024801
Unit42Wireshark Tutorial: Exporting Objects From a Pcap01-03-2024802
MSRC Security UpdateCVE-2024-21410 Microsoft Exchange Server Elevation of Privilege Vulnerability01-03-2024803
MSRC Security UpdateChromium: CVE-2024-1939 Type Confusion in V829-02-2024804
MSRC Security UpdateChromium: CVE-2024-1938 Type Confusion in V829-02-2024805
Microsoft SecurityFaye’s Journey: From Security PM to Diversity Advocate at Microsoft29-02-2024806
MSRC Security UpdateCVE-2024-26196 Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability29-02-2024807
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution28-02-2024808
MSRC Security UpdateCVE-2024-21626 GitHub: CVE-2024-21626 Container breakout through process.cwd trickery and leaked fds28-02-2024809
MSRC Security UpdateCVE-2024-21338 Windows Kernel Elevation of Privilege Vulnerability28-02-2024810
Microsoft SecurityMicrosoft boosts its Microsoft 365 Insider Builds on Windows Bounty Program with higher awards and an expanded scope27-02-2024811
Consiglio Federale CH Un impegno a favore dell’educazione, della ricerca e dell’innovazione in Svizzera 27-02-2024812
Microsoft SecurityFrom Indiana Jones to Cybersecurity: The Inspiring Journey of Devin26-02-2024813
Center of Internet SecurityA Vulnerability in Apache OFBiz Could Allow for Remote Code Execution23-02-2024814
Center of Internet SecurityA Vulnerability in Junos OS Could Allow for Remote Code Execution22-02-2024815
Center of Internet SecurityMultiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution22-02-2024816
Center of Internet SecurityMultiple Vulnerabilities in ConnectWise ScreenConnect Could Allow for Remote Code Execution22-02-2024817
Consiglio Federale CH Migrazione verso Microsoft 365: introduzione nelle prime unità amministrative 22-02-2024818
Center of Internet SecurityMultiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution21-02-2024819
Consiglio Federale CH Sostegno ai media indipendente dal canale di diffusione: proposte del Consiglio federale 21-02-2024820
Microsoft SecurityAn Obsession With Impact: The Inspiring Journey of a Dreamer That Led to a Career at Microsoft20-02-2024821
Microsoft SecurityNew Security Advisory Tab Added to the Microsoft Security Update Guide15-02-2024822
FR-CERT Alertes[MàJ] Vulnérabilité dans Microsoft Outlook (15 février 2024)15-02-2024823
Google TAGTool of First Resort: Israel-Hamas War in Cyber14-02-2024824
Center of Internet SecurityMultiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution13-02-2024825
Center of Internet SecurityCritical Patches Issued for Microsoft Products, February 13, 202413-02-2024826
Center of Internet SecurityMultiple Vulnerabilities in FortiOS Could Allow for Remote Code Execution09-02-2024827
FR-CERT Alertes[MàJ] Vulnérabilité dans Fortinet FortiOS (09 février 2024)09-02-2024828
Consiglio Federale CH Il 13,3% delle persone occupate non utilizza mai strumenti informatici nello svolgimento del proprio lavoro 08-02-2024829
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution06-02-2024830
Google TAGBuying Spying: How the commercial surveillance industry works and what can be done about it06-02-2024831
FR-CERT Alertes[MàJ] Incident affectant les solutions AnyDesk (05 février 2024)05-02-2024832
Consiglio Federale CH «Autotest sulla naturalizzazione»: la SEM dà il via alla fase pilota 01-02-2024833
Center of Internet SecurityMultiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution31-01-2024834
Center of Internet SecurityMultiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution30-01-2024835
Center of Internet SecurityA Vulnerability in Trend Micro uiAirSupport Could Allow for Arbitrary Code Execution30-01-2024836
Microsoft SecurityCongratulations to the Top MSRC 2023 Q4 Security Researchers!30-01-2024837
NCSCThe near-term impact of AI on the cyber threat25-01-2024838
Consiglio Federale CH L’Autorità federale di vigilanza sulle fondazioni offre un servizio chatbot basato sull’intelligenza artificiale 25-01-2024839
Google TAGTAG Bulletin: Q4 202319-01-2024840
Microsoft SecurityMicrosoft Actions Following Attack by Nation State Actor Midnight Blizzard19-01-2024841
Google TAGRussian threat group COLDRIVER expands its targeting of Western officials to include the use of malware18-01-2024842
Consiglio Federale CH Diverse pagine web dell’Amministrazione federale temporaneamente irraggiungibili a causa di un attacco DDoS 17-01-2024843
FR-CERT Alertes[MàJ] Multiples Vulnérabilités dans GitLab (12 janvier 2024)12-01-2024844
FR-CERT Alertes[MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways (11 janvier 2024)11-01-2024845
Consiglio Federale CH Al via in due Cantoni pilota il nuovo sistema di accesso ai servizi delle autorità svizzere 11-01-2024846
Microsoft SecurityBlueHat India Call for Papers is Now Open!08-01-2024847
Microsoft SecurityMicrosoft addresses App Installer abuse28-12-2023848
Microsoft SecurityAzure Serial Console Attack and Defense - Part 219-12-2023849
Consiglio Federale CH La BAC riconsegna la bandiera durante una cerimonia militare 19-12-2023850
Consiglio Federale CH Il Consiglio federale vuole ridurre i rischi geopolitici legati all'infrastruttura digitale 15-12-2023851
Consiglio Federale CH Meno aiuti indiretti per la stampa locale e regionale 15-12-2023852
FR-CERT AlertesVulnérabilité dans Apache Struts 2 (13 décembre 2023)13-12-2023853
Consiglio Federale CH Il DDPS rinnova i suoi siti Internet 11-12-2023854
Consiglio Federale CH Basi per limitare il servizio universale nel traffico postale e dei pagamenti in una situazione di grave penuria di elettricità 08-12-2023855
Consiglio Federale CH Il Consiglio federale pone le basi per la trasformazione digitale della Svizzera 08-12-2023856
Consiglio Federale CH Il Consiglio federale getta le basi per l’ecosistema dei dati svizzero 08-12-2023857
Consiglio Federale CH Il Consiglio federale vuole un accesso Internet veloce per tutta la Svizzera 08-12-2023858
Consiglio Federale CH Scambio di informazioni e community building per rafforzare la resilienza informatica nella Ginevra internazionale 30-11-2023859
Consiglio Federale CH Avviso di pubblicazione 29-11-2023860
Consiglio Federale CH Il Consiglio federale libera le frequenze per le reti mobili locali private 29-11-2023861
Consiglio Federale CH Nomina dei membri dell’Autorità di controllo indipendente per l’esplorazione radio e l’esplorazione di segnali via cavo 22-11-2023862
Consiglio Federale CH Il Consiglio federale delinea la procedura per la radiocomunicazione mobile nella gamma delle onde millimetriche 22-11-2023863
Consiglio Federale CH Intelligenza artificiale: il Consiglio federale esamina gli approcci normativi 22-11-2023864
Consiglio Federale CH Id-e: Commento della Consigliera federale Elisabeth Baume-Schneider 22-11-2023865
Consiglio Federale CH Il Consiglio federale pone in vigore la legge federale concernente l’impiego di mezzi elettronici per l’adempimento dei compiti delle autorità 22-11-2023866
Consiglio Federale CH La Svizzera introduce l'USB-C come standard di ricarica unitario 22-11-2023867
Consiglio Federale CH Id-e: il Consiglio federale adotta il messaggio 22-11-2023868
Microsoft SecurityIntroducing the Microsoft Defender Bounty Program21-11-2023869
Microsoft SecurityCelebrating ten years of the Microsoft Bug Bounty program and more than $60M awarded20-11-2023870
Consiglio Federale CH Comitato consultivo Svizzera digitale: le leggi devono promuovere la digitalizzazione 20-11-2023871
Microsoft SecurityReflecting on 20 years of Patch Tuesday17-11-2023872
Google TAGZimbra 0-day used to target international government organizations16-11-2023873
Consiglio Federale CH Le ordinanze in materia di sorveglianza del traffico delle telecomunicazioni sono adeguate ai progressi tecnologici 15-11-2023874
Consiglio Federale CH Rapporto conferma le misure previste contro la diffusione di discorsi di odio 15-11-2023875
Consiglio Federale CH Sorveglianza delle telecomunicazioni: importi forfettari in vigore dal 1° gennaio 2024 15-11-2023876
Microsoft SecurityMicrosoft guidance regarding credentials leaked to GitHub Actions Logs through Azure CLI14-11-2023877
Consiglio Federale CH Attacco hacker alla società Concevis: interessata anche l’Amministrazione federale 14-11-2023878
Consiglio Federale CH Il Consiglio federale respinge l'«iniziativa SSR» ma il canone radio-tv deve diminuire 08-11-2023879
Consiglio Federale CH Il consigliere federale Albert Rösti al vertice sull’intelligenza artificiale nel Regno Unito 02-11-2023880
Consiglio Federale CH Rapporto semestrale dell’NCSC: in primo piano il cosiddetto «hacktivismo» 02-11-2023881
Consiglio Federale CH Rafforzamento della rete mobile in caso di problemi di approvvigionamento elettrico 01-11-2023882
Consiglio Federale CH Il consigliere federale Albert Rösti sarà a Londra e a Parigi alla fine della settimana 31-10-2023883
Consiglio Federale CH Ultima proroga di due anni delle concessioni FM 25-10-2023884
FR-CERT Alertes[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway (23 octobre 2023)23-10-2023885
Google TAGGovernment-backed actors exploiting WinRAR vulnerability18-10-2023886
FR-CERT Alertes[MàJ] Multiples vulnérabilités dans Cisco IOS XE (17 octobre 2023)17-10-2023887
Microsoft SecurityCongratulations to the Top MSRC 2023 Q3 Security Researchers!16-10-2023888
Microsoft SecurityIntroducing the Microsoft AI Bug Bounty Program featuring the AI-powered Bing experience12-10-2023889
Microsoft SecurityMicrosoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/210-10-2023890
Google TAGTAG Bulletin: Q3 202305-10-2023891
Microsoft SecurityCybersecurity Awareness Month 2023: Elevating Security Together05-10-2023892
Microsoft SecurityMicrosoft’s Response to Open-Source Vulnerabilities - CVE-2023-4863 and CVE-2023-5217 02-10-2023893
FR-CERT AlertesMultiples vulnérabilités dans Exim (02 octobre 2023)02-10-2023894
Consiglio Federale CH Modifica dell’ordinanza sul coordinamento della trasformazione digitale e la governance delle TIC in seno all’Amministrazione federale 29-09-2023895
Microsoft SecurityJourney Down Under: How Rocco Became Australia’s Premier Hacker25-09-2023896
Google TAG0-days exploited by commercial surveillance vendor in Egypt22-09-2023897
Microsoft SecurityMicrosoft mitigated exposure of internal information in a storage account due to overly-permissive SAS token18-09-2023898
Consiglio Federale CH La Confederazione dà avvio a un esperimento pilota su Mastodon 12-09-2023899
Consiglio Federale CH Protezione contro le radiazioni della telefonia mobile: apre il servizio di consulenza 08-09-2023900
Google TAGActive North Korean campaign targeting security researchers07-09-2023901
Microsoft SecurityResults of Major Technical Investigations for Storm-0558 Key Acquisition06-09-2023902
Consiglio Federale CH Oggi entra in vigore il nuovo diritto in materia di protezione dei dati 01-09-2023903
Consiglio Federale CH Sporta una denuncia penale per la fuga di dati presso Xplain che ha interessato frammenti del programma di allestimento di giornali e di rapporti della polizia militare 24-08-2023904
Consiglio Federale CH Attacco hacker contro la società Xplain: il Consiglio federale conferisce un mandato d’inchiesta 23-08-2023905
Consiglio Federale CH Digitalizzazione della dogana: Svizzera e Austria concordano un processo doganale di base comune 18-08-2023906
Consiglio Federale CH Programma nazionale per la digitalizzazione del settore sanitario: incontro del Comitato consultivo Svizzera digitale 17-08-2023907
Microsoft SecurityAzure Serial Console Attack and Defense - Part 110-08-2023908
Microsoft SecurityUpdating our Vulnerability Severity Classification for AI Systems08-08-2023909
Microsoft SecurityCongratulations to the MSRC 2023 Most Valuable Security Researchers!08-08-2023910
Microsoft SecurityMicrosoft Bug Bounty Program Year in Review: $13.8M in Rewards07-08-2023911
Microsoft SecurityMicrosoft mitigates Power Platform Custom Code information disclosure vulnerability04-08-2023912
Google TAGTAG Bulletin: Q2 202331-07-2023913
Google TAGThe ups and downs of 0-days27-07-2023914
Microsoft SecurityBlueHat October 2023 Call for Papers is Now Open!27-07-2023915
FR-CERT Alertes[MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (26 juillet 2023)26-07-2023916
NCSCACD - The Sixth Year24-07-2023917
Microsoft SecurityUpdated Researcher Portal Submission Form: Discover the New Fields in the Submission Form20-07-2023918
FR-CERT Alertes[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway (19 juillet 2023)19-07-2023919
Microsoft SecurityFrom Bounty Leaderboards to Microsoft Security Researcher, Meet Cameron Vincent!17-07-2023920
FR-CERT Alertes[MàJ] Vulnérabilité dans Zimbra Collaboration Suite (17 juillet 2023)17-07-2023921
Microsoft SecurityWhat to expect when reporting vulnerabilities to Microsoft14-07-2023922
Microsoft SecurityCongratulations to the Top MSRC 2023 Q2 Security Researchers!14-07-2023923
FR-CERT AlertesVulnérabilité dans les produits Microsoft (12 juillet 2023)12-07-2023924
Consiglio Federale CH Attacco hacker contro Xplain: pubblicato nel dark web un estratto del sistema d’informazione «HOOGAN» del 2015 – le persone interessate saranno informate 12-07-2023925
Microsoft SecurityMicrosoft mitigates China-based threat actor Storm-0558 targeting of customer email11-07-2023926
FR-CERT AlertesSynthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer (05 juillet 2023)05-07-2023927
Consiglio Federale CH Prima borsa dell’innovazione GovTech 05-07-2023928
Microsoft SecurityBreaking Barriers: Aditi’s Journey Through Sight Loss to Microsoft AI Innovator28-06-2023929
Consiglio Federale CH Il Consiglio federale prosegue i lavori per una rete a banda ultra larga in tutta la Svizzera 28-06-2023930
Consiglio Federale CH Apertura del dominio ".swiss" alle persone fisiche 28-06-2023931
Consiglio Federale CH Attacco hacker contro Xplain: il Consiglio federale istituisce uno stato maggiore di crisi politico-strategico per la fuga di dati 28-06-2023932
Consiglio Federale CH CFR - I giovani e il razzismo: punto della situazione e possibili strategie di prevenzione 26-06-2023933
NCSCCyber Threat Report: UK Legal Sector21-06-2023934
Microsoft SecurityPotential Risk of Privilege Escalation in Azure AD Applications20-06-2023935
Consiglio Federale CH Ampliamento del sistema di chiamata d'emergenza in Svizzera 20-06-2023936
Microsoft SecurityMicrosoft Response to Layer 7 Distributed Denial of Service (DDoS) Attacks16-06-2023937
Microsoft SecurityMicrosoft mitigates set of cross-site scripting (XSS) vulnerabilities in Azure Bastion and Azure Container Registry14-06-2023938
Consiglio Federale CH Attacco hacker contro Xplain: le prime analisi dei dati indicano che occorre intervenire 14-06-2023939
FR-CERT AlertesVulnérabilité dans les produits Fortinet (13 juin 2023)13-06-2023940
Consiglio Federale CH Attacco DDoS contro l’Amministrazione federale: diversi siti Internet e applicazioni non sono accessibili 12-06-2023941
Consiglio Federale CH Rapporto sulla sicurezza informatica della Confederazione nel 2022 09-06-2023942
Consiglio Federale CH Il Consiglio federale approva l’accordo tra la Confederazione e i Cantoni per il finanziamento di progetti di digitalizzazione 09-06-2023943
Microsoft SecurityHey Yara, find some vulnerabilities08-06-2023944
Consiglio Federale CH Attacco hacker alla ditta Xplain: colpita anche l’Amministrazione federale 08-06-2023945
Consiglio Federale CH Scenari per lo sviluppo futuro di un'agenzia di stampa nazionale 02-06-2023946
Consiglio Federale CH Servizio universale della Posta nel settore del traffico dei pagamenti: requisiti soddisfatti 01-06-2023947
Consiglio Federale CH Preoccupazioni digitali al centro del dibattito dello Swiss IGF 23-05-2023948
Microsoft SecurityAnnouncing The BlueHat Podcast: Listen and Subscribe Now!17-05-2023949
Consiglio Federale CH Rapporto semestrale dell’NCSC: in primo piano, la cibersicurezza presso le PMI 11-05-2023950
Microsoft SecurityGuidance related to Secure Boot Manager changes associated with CVE-2023-2493209-05-2023951
Consiglio Federale CH Avviso di pubblicazione - Rapporto sulla trasmissione di informazioni da parte dell’UFIT nel caso di decreti di edizione emanati nell’ambito di procedimenti penali 08-05-2023952
Google TAGTAG Bulletin: Q1 202301-05-2023953
Consiglio Federale CH Il Consiglio federale pianifica una valutazione complessiva della SSR 26-04-2023954
Consiglio Federale CH Definiti nuovi progetti chiave TDT 20-04-2023955
Google TAGUkraine remains Russia’s biggest cyber focus in 202319-04-2023956
Microsoft SecurityMicrosoft Vulnerability Severity Classification for Online Services Publication18-04-2023957
Consiglio Federale CH Politica digitale dell'UE: analisi degli effetti sulla Svizzera 18-04-2023958
Microsoft SecurityCongratulations to the Top MSRC 2023 Q1 Security Researchers!13-04-2023959
Consiglio Federale CH Il Consiglio federale e i Cantoni definiscono la nuova ciberstrategia nazionale 13-04-2023960
Microsoft SecurityBest practices regarding Azure Storage Keys, Azure Functions, and Azure Role Based Access11-04-2023961
Google TAGHow we’re protecting users from government-backed attacks from North Korea05-04-2023962
Consiglio Federale CH Grandi piattaforme di comunicazione: il Consiglio federale auspica una regolamentazione 05-04-2023963
FR-CERT Alertes[MàJ] Compromission de l'application 3CX Desktop App (31 mars 2023)31-03-2023964
Google TAGSpyware vendors use 0-days and n-days against popular platforms29-03-2023965
Microsoft SecurityGuidance on Potential Misconfiguration of Authorization of Multi-Tenant Applications that use Azure AD29-03-2023966
Consiglio Federale CH Concluso il primo GovTech Hackathon per la trasformazione digitale della Svizzera 27-03-2023967
Consiglio Federale CH Le attualità dell’UFPD cambiano veste 23-03-2023968
Consiglio Federale CH CFR - Piattaforma di segnalazione dei discorsi d’odio razzisti online: un primo bilancio dopo un anno 21-03-2023969
FR-CERT Alertes[MàJ] Vulnérabilité dans Microsoft Outlook (15 mars 2023)15-03-2023970
Google TAGMagniber ransomware actors used a variant of Microsoft SmartScreen bypass14-03-2023971
Microsoft SecurityMicrosoft Mitigates Outlook Elevation of Privilege Vulnerability14-03-2023972
FR-CERT AlertesVulnérabilité dans Fortinet FortiOS (14 mars 2023)14-03-2023973
Consiglio Federale CH Primo Linked Data Day dell'Amministrazione federale 09-03-2023974
Consiglio Federale CH Commissione ONU sulla condizione delle donne: la Svizzera sottolinea l’importanza della digitalizzazione per la parità di genere 06-03-2023975
Consiglio Federale CH L’esercito trasferirà l’informatica dell’amministrazione all’Ufficio federale dell’informatica e della telecomunicazione 03-03-2023976
Consiglio Federale CH Sistemi d’informazione del DDPS: il Consiglio federale adegua le basi giuridiche 03-03-2023977
Microsoft SecurityAzure Kubernetes Service (AKS) Threat Hunting01-03-2023978
Microsoft SecurityConfiguring host-level audit logging for AKS VMSS01-03-2023979
Microsoft SecurityFirst steps in CHERIoT Security Research28-02-2023980
Consiglio Federale CH Importi forfettari per la sorveglianza del traffico delle telecomunicazioni: avviata la consultazione 22-02-2023981
Google TAGFog of war: how the Ukraine conflict transformed the cyber threat landscape16-02-2023982
Consiglio Federale CH La Confederazione introduce Microsoft 365 15-02-2023983
Consiglio Federale CH Piattaforma per la comunicazione elettronica nella giustizia: il Consiglio federale adotta il messaggio 15-02-2023984
Microsoft SecurityNew MSRC Blog Site08-02-2023985
Microsoft SecurityBlueHat 2023: Connecting the security research community with Microsoft06-02-2023986
FR-CERT Alertes[MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi (03 février 2023)03-02-2023987
Microsoft SecurityMicrosoft Investigation - Threat actor consent phishing campaign abusing the verified publisher process31-01-2023988
Consiglio Federale CH Radio locali e TV regionali: avvio della gara pubblica per le nuove concessioni 30-01-2023989
Google TAGOver 50,000 instances of DRAGONBRIDGE activity disrupted in 202226-01-2023990
Microsoft SecurityCongratulations to the Top MSRC 2022 Q4 Security Researchers!26-01-2023991
Microsoft SecurityMicrosoft resolves four SSRF vulnerabilities in Azure cloud services17-01-2023992
Consiglio Federale CH Crediti addizionali per i centri di calcolo e l’ammodernamento della sorveglianza dello spazio aereo: disponibile l’indagine indipendente 12-01-2023993
Microsoft SecurityPublishing CBL-Mariner CVEs on the Security Update Guide CVRF API06-01-2023994
Microsoft SecuritySecurity Update Guide Improvement – Representing Hotpatch Updates29-12-2022995
Consiglio Federale CH Informatevi sulle pari opportunità delle persone disabili 20-12-2022996
FR-CERT AlertesMultiples vulnérabilités dans AMI MegaRAC (16 décembre 2022)16-12-2022997
Consiglio Federale CH Internet più veloce nel servizio universale 16-12-2022998
Consiglio Federale CH Avviso Pubblicazione 16-12-2022999

Le fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti
  • US-CERT CISA
  • NCSC
  • Center of Internet Security
  • FR-CERT Alertes
  • FR-CERT Avis
  • EU-ENISA Publications
  • Google TAG
  • Microsoft Security
  • SANS
  • Unit42
  • MSRC Security Update
  • CERT-Bund DE
  • CSIRT IT
  • Consiglio Federale CH

Questo script colleziona ogni rivendicazione criminale esattamente come esposta dalle fonti (modello "As Is"), in un database SQL per creare un feed permanente, che può anche essere seguito con tecnologia RSS.
Il motore è basato sul progetto ransomFeed, fork in GitHub.