by EGI CSIRT | Nov 15, 2023 | Advisories, News
A HIGH risk vulnerability has been found concerning INDIGO-IAM where a user may be granted rights to which they are not entitled. Effectively this is a privilege escalation vulnerability. This is fixed in INDIGO-IAM version 1.8.1p2 and 1.8.2p2. More about this...
by EGI CSIRT | Nov 13, 2023 | Advisories, News
Multiple HIGH risk race condition vulnerabilities concerning Slurm (CVE-2023-41914) were found which may result in the user taking ownership of an arbitrary file on the system. This has been fixed in Slurm versions 23.02.6 and 22.05.10. Sites using a vulnerable...
by EGI CSIRT | Oct 23, 2023 | Advisories, News
Multiple (also critical) vulnerabilities were found in Cisco IOS XE Software Web UI that effect devices with HTTP in HTTPS protocols enabled and exposed to the Internet. The most critical is vulnerability CVE-2023-20198 with CVSS score 10.0, which allows a remote,...
by EGI CSIRT | Oct 20, 2023 | Advisories, News
A potential security vulnerability in some Intel® Processors may allowinformation disclosure. Intel released firmware updates and an optionalsoftware sequence to mitigate this potential vulnerability. Read more about this vulnerability in the SVG...
by EGI CSIRT | Oct 19, 2023 | Advisories, News
Multiple high kernel vulnerabilities were fixed in the RHEL7, RHEL8 and RHEL9. CVEs affecting RHEL9 only: CVE ID/CVSS Score : CVE-2023-3610/7.8CVE ID/CVSS Score : CVE-2023-4147/7.8 CVE ID/CVSS Score : CVE-2023-31248/7.8 CVEs affecting RHEL9 and RHEL8: CVE ID/CVSS...
Recent Comments