HKCERT
- RedHat Linux Kernel Multiple Vulnerabilities March 18, 2024Multiple vulnerabilities were identified in RedHat Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure and data manipulation on the targeted system Impact Denial of Service Remote Code Execution Information Disclosure Data Manipulation Elevation of Privilege System / Technologies […]
- Microsoft Edge Multiple Vulnerabilities March 15, 2024Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and security restriction bypass on the targeted system. Impact Remote Code Execution Security Restriction Bypass System / Technologies affected Microsoft Edge (Stable) prior to 122.0.2365.92 Solutions Before installation of the software, please visit the […]
- Malware Alert - Increasing Trend of DarkGate Malware Attacks Exploiting Microsoft Windows SmartScreen's Critical Vulnerability March 15, 2024Solutions HKCERT recommends that users should: Organizations are advised to keep their systems and devices up-to-date with the latest security patches Implement multi-factor authentication to prevent unauthorized access. Use reputable antivirus software Educate employees on how to identify and avoid phishing attacks Be cautious when opening email attachments or clicking on links from unknown […]
- Google Chrome Remote Code Execution Vulnerability March 14, 2024A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system. Impact Remote Code Execution System / Technologies affected Google Chrome prior to 122.0.6261.128 (Linux) Google Chrome prior to 122.0.6261.128/.129 (Mac) Google Chrome prior to 122.0.6261.128/.129 (Windows) Solutions Before installation of the software, please visit the software […]
- Microsoft Monthly Security Update (March 2024) March 13, 2024Microsoft has released monthly security update for their products: Vulnerable Product Risk Level Impacts Notes System Center Medium Risk Security Restriction Bypass Elevation of Privilege Remote Code Execution Developer Tools Medium Risk Denial of Service Elevation of... Impact Remote Code Execution Security Restriction Bypass Elevation of Privilege Denial of Service Information Disclosure Spoofing […]
- Fortinet Products Multiple Vulnerabilities March 13, 2024Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, elevation of privilege and security restriction bypass on the targeted system. Impact Security Restriction Bypass Remote Code Execution Elevation of Privilege System / Technologies affected FortiClientEMS 6.0 all versions FortiClientEMS 6.2 all versions FortiClientEMS 6.4 […]
- Adobe Monthly Security Update (March 2024) March 13, 2024Adobe has released monthly security update for their products: Vulnerable Product Risk Level Impacts Notes Details (including CVE) Adobe Experience Manager Medium Risk Cross-site Scripting Remote Code Execution Security Restriction Bypass APSB24-05 Adobe... Impact Remote Code Execution Security Restriction Bypass Cross-Site Scripting Information Disclosure System / Technologies affected Adobe Experience Manager (AEM) AEM […]
- GitLab Multiple Vulnerabilities March 12, 2024Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege and security restriction bypass on the targeted system. Impact Elevation of Privilege Security Restriction Bypass System / Technologies affected GitLab Community Edition (CE) versions prior to 16.9.2, 16.8.4 and 16.7.7 GitLab Enterprise Edition (EE) versions […]
- ChromeOS Security Restriction Bypass Vulnerabilities March 12, 2024Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass on the targeted system. Impact Security Restriction Bypass System / Technologies affected Version prior to 120.0.6099.301 (Platform Version: 15662.96.0) Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes […]
- QNAP NAS Multiple Vulnerabilities March 11, 2024Multiple vulnerabilities were identified in QNAP NAS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, security restriction bypass and cross-site scripting on the targeted system. Impact Remote Code Execution Denial of Service Cross-Site Scripting Security Restriction Bypass System / Technologies affected myQNAPcloud version prior to 1.0.52 (2023/11/24) […]