Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
3052 Results
High Vulnerabilities in Multiple Android Products
Google has released security updates to address High vulnerabilities in multiple Android products. The most severe of these issues is a critical security vulnerability in the System component that could lead to remote escalation of privilege with no additional execution privileges needed.
Vulnerabilities Affecting Multiple SAP Products
SAP released their March 2022 updates to address vulnerabilities in various SAP products. An attacker could exploit these vulnerabilities to take control of an affected system.
Vulnerabilities in Various Microsoft Products
Microsoft released their March 2022 update to address vulnerabilities in various Microsoft products. An attacker could exploit these vulnerabilities to take control of an affected system.
0-Day High Vulnerabilities in Mozilla Firefox are Actively Being Exploited
Mozilla has released out-of-band software updates to address two high-impact security vulnerabilities that are being actively exploited in the wild. The zero-day flaws have been described as use-after-free issues impacting the Extensible Stylesheet Language Transformations (XSLT) parameter processing and the WebGPU inter-process communication (IPC) Framework.
High Vulnerability Discovered in the Linux kernel
A security update was released to address High vulnerabilities discovered in the Linux kernel. An unauthorized user could exploit this vulnerability to perform unauthorized privilege escalation.
Vulnerabilities Discovered in APC Smart-UPS Devices
A security update was released to address vulnerabilities discovered in APC Smart-UPS devices. An unauthorized user could exploit this vulnerability to take over Smart-UPS devices and carry out extreme attacks targeting both physical devices and IT assets.
Critical Bugs Reported in Popular Open Source PJSIP SIP and Media Stack
A security update was released to address Critical Bugs Reported in Popular Open Source PJSIP SIP and Media Stack. A remote attacker could trigger arbitrary code execution and denial-of-service (DoS) in applications that use the protocol stack. For a complete description of the vulnerabilities and effected systems, visit PJSIP version 2.12. IT Security
Critical, High, and Medium Vulnerabilities in Multiple Cisco Products
Cisco has released security updates to address Critical, High, and Medium vulnerabilities in multiple Cisco products. An attacker could exploit one of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and effected systems, visit Cisco Security Advisories and Alerts. IT Security
Chrome version 99.0.4844.51 for Windows, Mac, and Linux was Released
Google has released Chrome version 99.0.4844.51 for Windows, Mac, and Linux. (Chrome update is rolling out so may not be available for immediate download.) An attacker could exploit one of these vulnerabilities to take control of an affected system.
CrashPlan Permissions on Macs
Problem Effective May 15, 2023, our standard application for automatic backups at UCSF is changing from Code42 to CrashPlan. Although the backup service will remain the same, the name of the application, the logo and the branding will be different. Due to this branding change by the vendor, UCSF Macs that are not actively managed on MDM by UCSF Jamf Pro will need to manually re-allow disk access to CrashPlan in order to continue the automatic backup process.
- Affiliate
- Faculty
- Staff
- Desktop Support