BMC vulnerabilities

Two vulnerabilities have been found that enable bypassing authentication or injecting malicious code via Redfish remote management interfaces. CVE-2023-34329 – Authentication Bypass via HTTP Header SpoofingCVE-2023-34330 – Code injection via Dynamic...

Zenbleed speculative execution vulnerability

A speculative execution vulnerability has been discovered in AMD Zen 2 CPUs.This vulnerability has been dubbed “Zenbleed”. A malicious actor could steal sensitive data, such as passwords and encryption keys,resident in the CPU cores. Sensitive data could...

13th Thematic CERN School of Computing on Security

Registration to the 13th Thematic CERN School of Computing on Security 2023 is now opened, where members of EGI CSIRT will be actively involved. It will take place in Split from 8th to 14th of October 2023. The theme of the school is “Security of research...

Security training at EGI Conference 2023

EGI CSIRT held an interesting and fruitful training and discussions at the EGI Conference 2023. First two sessions covered Threat Intelligence and SOC, and Security in OIDC deployments, followed by a hands-on security training on forensics. Threat Intelligence and the...