TTCSIRT-THREAT ALERT: Russian State-Sponsored Malicious Cyber Actors Exploiting CVE-2020-4006
Please be advised, Russian state-sponsored actors exploiting CVE-2020-4006, a command-injection vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. The actors were found exploiting this vulnerability…
Read MoreTTCSIRT-382.12.03.20: TT-CSIRT ADVISORY – Mozilla Releases Security Update for Thunderbird
Mozilla has released a security update to address a vulnerability in Thunderbird. An attacker could exploit this vulnerability to take control of an affected system. It is encouraged that users and administrators…
Read MoreTTCSIRT-381.12.03.20: TT-CSIRT ADVISORY – Xerox Releases Security Updates for DocuShare
Xerox has released security updates for DocuShare 6.6.1, 7.0, and 7.5 to address a vulnerability that could allow an unauthenticated attacker to obtain sensitive information. It is urged that users and…
Read MoreTTCSIRT-380.12.03.20: TT-CSIRT ADVISORY – Apple Releases Security Updates for iCloud for Windows
Apple has released security updates to address vulnerabilities in iCloud for Windows. An attacker could exploit some of these vulnerabilities to take control of an affected system. It is encouraged…
Read MoreTTCSIRT-379.11.25.20: TT-CSIRT ADVISORY – VMware Releases Workarounds for CVE-2020-4006
VMware has released workarounds to address a vulnerability—CVE-2020-4006—in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. An attacker could exploit this vulnerability to take control of…
Read MoreTTCSIRT-378.11.17.20: TT-CSIRT ADVISORY – Cisco Releases Security Updates for Security Manager
Cisco has released security updates to address vulnerabilities in Cisco Security Manager. A remote attacker could exploit these vulnerabilities to obtain sensitive information. It is encouraged that users and administrators, review the…
Read More