TTCSIRT-260.010620: TT-CSIRT ADVISORY- FORTIOS SSL VPN WEB PORTAL HOST HEADER REDIRECTION
A Host Header Redirection vulnerability exists in FortiOS SSL-VPN web portal: when an attacker submits specially crafted HTTP requests, the SSL-VPN web portal may respond with a redirection to websites…
Read MoreTTCSIRT-258.010620: TT-CSIRT ADVISORY- FORTIMAIL ADMIN PRIVILEGE ESCALATION
Two improper access control vulnerabilities in FortiMail admin webUI may allow administrators to perform privileged functions they should not be authorized for. Specifically, the two vulnerabilities are identified as the…
Read MoreTTCSIRT-259.010620: TT-CSIRT ADVISORY- DRAGONBLOOD VULNERABILITIES
Multiple vulnerabilities, referred to as Dragonblood, exist in WiFi WPA3 standard implementation . Dragonblood vulnerabilities impacting WiFi WPA3 standard implementations can cause password leak, denial of service or authorization bypass.…
Read MoreTTCSIRT-261.010620: TT-CSIRT ADVISORY – CISCO SECURITY UPDATES
Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.TT-CSIRT encourages users…
Read MoreTTCSIRT-257.121919:TT-CSIRT ADVISORY- SHAREPOINT SECURITY UPDATE
Microsoft has released out-of-band security updates to address a vulnerability in SharePoint Server. An attacker could exploit this vulnerability to obtain sensitive information. The Trinidad and Tobago Cyber Security Incident…
Read MoreTTCSIRT-256.121619:TT-CSIRT ADVISORY- WORDPRESS UPDATE
WordPress 5.3 and prior versions are affected by multiple vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected website. TTCSIRT urges users and administrators…
Read More