Category: france

The Computer Emergency Response Team of France (CERT-FR) has issued an advisory concerning multiple vulnerabilities detected in the Ubuntu Linux kernel. Document Management Risk(s) Affected Systems Summary Multiple vulnerabilities have been identified in the Ubuntu Linux kernel. Some of these vulnerabilities allow an attacker to execute arbitrary code remotely, compromise data confidentiality, and compromise data…

The Computer Emergency Response Team of France (CERT-FR) has issued an advisory regarding multiple vulnerabilities identified in Google Android. Document Management Risk(s) Affected Systems Summary Multiple vulnerabilities have been discovered in Google Android. Some of these vulnerabilities allow an attacker to trigger remote arbitrary code execution, remote denial of service, and a breach of data…

The Air and Space Force (Armée de l’Air et de l’Espace – AAE) is set to unveil its capabilities and missions to the audience of the National Defense Higher Studies Institute and the students of the War School on Thursday, October 12, 2023, at the “Commandant Viot” Air Base in Évreux. The day will commence…

A recent security advisory from CERT-FR highlights a vulnerability in Microsoft Edge. The flaw, identified as CVE-2023-5346, allows attackers to exploit unspecified security issues. Users are urged to update to Edge version 117.0.2045.55 or later to mitigate potential risks. For more information and patches, refer to Microsoft’s security bulletin dated October 4, 2023. https://www.cert.ssi.gouv.fr/avis/CERTFR-2023-AVI-0807/

Table 1: Document Management Detailed version control is available at the end of this document. RISKS AFFECTED SYSTEMS SUMMARY Multiple vulnerabilities have been discovered in Apple products, enabling an attacker to trigger privilege escalation and execute arbitrary code. The publisher is aware of a report indicating active exploitation of the vulnerability. SOLUTION Refer to the…

Table 1: Document Management Detailed version control is available at the end of this document. RISKS Privilege Escalation AFFECTED SYSTEMS glibc without the latest security patch SUMMARY A vulnerability has been discovered in GNU LIBC, allowing an attacker to trigger privilege escalation. SOLUTION Refer to the publisher’s security bulletin for obtaining patches (see Documentation section).…

CERT-FR has issued an advisory regarding a vulnerability in Mozilla Thunderbird (CVE-2023-5217). The risk, unspecified by the publisher, affects versions of Thunderbird prior to 115.3.1. The vulnerability could be exploited by attackers to cause undisclosed security issues. Mozilla reports active exploitation of CVE-2023-5217 in other products as well. Users are advised to refer to the…

A recent advisory from CERT-FR highlights a vulnerability in various Microsoft products (CVE-2023-4863). The risk, unspecified by the publisher, affects older versions of Skype, Webp image extensions, and Microsoft Teams for Mac and Desktop. The vulnerability, identified as CVE-2023-4863, could be exploited by attackers to cause undisclosed security issues. Users are urged to check the…

The CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in the Ubuntu Linux kernel. These vulnerabilities pose various risks, including compromise of data confidentiality, integrity, remote denial of service, and potential remote arbitrary code execution. Summary of Vulnerabilities: Solution: Refer to the security bulletin issued by Ubuntu for obtaining the necessary patches. Detailed information…

The CERT-FR has issued an advisory regarding the discovery of multiple vulnerabilities in Cisco products, exposing users to risks such as remote arbitrary code execution, remote denial of service, security policy bypass, and potential compromise of data confidentiality. Summary of Vulnerabilities: Solution: Refer to the vendor’s security bulletin for obtaining the necessary patches. Detailed information…

The Computer Emergency Response Team for France (CERT-FR) has issued an advisory regarding the discovery of a vulnerability in Roundcube Webmail. Users are urged to take immediate action to address this security concern. Summary of Vulnerability: A vulnerability has been identified in Roundcube Webmail, allowing an attacker to execute remote code injection through an indirect…

The Computer Emergency Response Team for France (CERT-FR) has issued an advisory regarding the discovery of a vulnerability in Mozilla Firefox. Users are urged to take immediate action to address this security concern. Summary of Vulnerability: A vulnerability has been identified in Mozilla Firefox, allowing an attacker to exploit unspecified security issues, the details of…

The Computer Emergency Response Team for France (CERT-FR) has issued an advisory regarding the discovery of multiple vulnerabilities in the Google Chrome browser. This notification aims to inform users of potential risks associated with these security flaws. Summary of Vulnerabilities: The identified vulnerabilities in Google Chrome allow an attacker to trigger security issues, although the…

The Computer Emergency Response Team of France (CERT-FR) issued a security advisory regarding multiple vulnerabilities discovered in Belden products. The vulnerabilities, present in various Hirschmann product lines, could lead to unspecified security issues, remote code execution, and security policy bypass. The affected systems include versions earlier than 9.1.08 for Hirschmann Classic RS, RSR, RSB, MACH100,…

The Computer Emergency Response Team of France (CERT-FR) has issued an advisory regarding multiple vulnerabilities in Mozilla products. These vulnerabilities present a range of risks, including remote arbitrary code execution, remote denial of service, data confidentiality breaches, data integrity compromise, and security policy circumvention. The affected Mozilla products and versions are as follows: Some of…

The Computer Emergency Response Team of France (CERT-FR) has issued an advisory regarding multiple vulnerabilities in Apple products. These vulnerabilities pose a significant threat, including data confidentiality breaches, security policy circumvention, remote denial of service, arbitrary code execution, and privilege escalation. The affected Apple products and versions are as follows: Some of these vulnerabilities may…

An urgent security advisory has been issued regarding a critical vulnerability in Xen, posing a significant risk to affected systems. Issue:The vulnerability, identified as CVE-2023-20588, enables attackers to compromise data confidentiality. This means that malicious individuals could potentially gain unauthorized access to sensitive information. Affected Systems:All versions of Xen without the latest security patch are…

A critical security vulnerability has been discovered in PostgreSQL pgAdmin, posing a serious risk to affected systems. Issue:The vulnerability, identified as CVE-2023-5002, allows attackers to execute arbitrary code remotely. This means that malicious actors can potentially gain unauthorized access and manipulate the affected systems. Affected Systems: Action Required:Users and administrators are strongly advised to take…

The French Computer Emergency Response Team (CERT-FR) has issued a critical advisory regarding multiple vulnerabilities found in various Apple products. These vulnerabilities pose serious threats, including the potential for data confidentiality breaches, security policy circumvention, remote arbitrary code execution, and privilege escalation. Key Points: The CERT-FR advisory underscores the importance of staying vigilant regarding software…

The French Computer Emergency Response Team (CERT-FR) has issued an advisory regarding multiple vulnerabilities found in the Ubuntu Linux kernel. These vulnerabilities pose significant risks, including the potential for remote code execution, data integrity compromise, and breaches of data confidentiality. Key Points: The CERT-FR advisory underscores the importance of regularly updating and patching systems to…