Other official information and services: www.belgium.be

Advisories

Vulnerability in iOS 12 allows attackers to retrieve files from Apple devices without user interaction

01/08/2019

Advisory

CERT.be recommends all users of Apple iOS devices to upgrade their devices to the latest version of iOS today.

Zoom Vulnerability

10/07/2019

Advisory

CERT.be recommends system administrators to update vulnerable zoom client applications for MacOS users to the latest version:
https://zoom.us/download

Multiple TCP-based remote denial of service vulnerabilities in FreeBSD and Linux Kernels

20/06/2019

Advisory

As the time of writing, no patches are yet available. However, Netflix published some mitigations on their GitHub page:

•

Critical Flaw Exposes TP-Link Wi-Fi Extenders to Remote Attacks

20/06/2019

Advisory

CERT.be recommends systems administrators to patch vulnerable devices after thorough testing.

Vulnerability in Exim mail server

06/06/2019

Advisory

CERT.be recommends systems administrators to follow this up and to act accordingly should they be running a compromised version of Exim. The vulnerability has been patched in Exim 4.92.

Critical vulnerabilities in systems running Intel CPUs manufactured since 2011 (AKA, Zombieload)

15/05/2019

Advisory

We recommend the following actions:

Bluekeep: Windows RDP Remote Code Execution Vulnerability

15/05/2019

Advisory

CERT.be recommends administrators to update their Microsoft Windows systems with the latest available patches as soon as possible:

PHP Phar deserialization protection mechanism bypass

10/05/2019

Advisory

CERT.be recommends system administrators to update their product to the latest version:

Zero day remote code execution in Oracle WebLogic Server

26/04/2019

Advisory

Oracle has released a patch and revised their critical security patches bundle of april. CERT.be recommends administrators to patch vulnerable systems after thorough testing.