TT-CSIRT – 432.10.09.24. SonicOS Improper Access Control Vulnerability
The TTCSIRT wishes to inform you of a recently identified vulnerability in SonicWall SonicOS. This improper access control issue affects SonicWall SonicOS management access and SSLVPN, potentially allowing unauthorized access…
Read MoreTTCSIRT 430.19.07.24: Global Outage Triggered by Faulty CrowdStrike Cybersecurity Update
A large-scale outage has occurred due to a broken CrowdStrike cybersecurity update, rendering Windows computers unable to start and affecting much of the world’s infrastructure. The problem stems from an…
Read MoreTT-CSIRT 429.10.07.24: Citrix Releases Security Updates for Multiple Products
Citrix has announced significant security updates to address vulnerabilities across multiple products. Administrators should promptly review and implement the following updates: NetScaler ADC and NetScaler Gateway: CVE-2024-5491, CVE-2024-5492 NetScaler Console,…
Read MoreTTCSIRT 428.16.04.24: Importance of Keeping Your VPN System Up to Date
Remote-access VPN systems allow off-site users to tunnel into protected networks, making these entry points vulnerable to exploitation by threat actors. From the Trinidad and Tobago perspective, the exploitation of…
Read MoreTT-CSIRT 427.12.04.24: CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect Gateway
A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary…
Read MoreTT-CSIRT-426.14.02.24: Critical Patches Issued for Microsoft Products
Microsoft has released security updates to address vulnerabilities in multiple products; the most severe of which could allow for remote code execution. Additionally, two (2) zero day vulnerabilities related to…
Read More