UCSF IT Technology

Threat Al

Threat Alert:

Threat Alert:

Microsoft released security updates to address an Important 0-Day vulnerability in Microsoft Windows Products. Successful exploitation of this vulnerability allows threat actors to steal a victim’s NTLMv2 hash and then use it to authenticate as the targeted user by performing pass-the-hash attacks.

Palo Alto Networks released security advisories and a bulletin to address Critical and other vulnerabilities in multiple Palo Alto Networks Products.For a complete description of the vulnerabilities and affected systems go to 

Veeam has released a security updates to address a High vulnerability in the Veeam Backup Enterprise Manager. A remote attacker could exploit this vulnerability to bypass authentication.For a complete description of the vulnerabilities and affected systems go to Veeam Backup Enterprise Manager Vulnerability (CVE-2024-40715).

Zoom has released security updates to address High and other vulnerabilities in Multiple Zoom Products.For a complete description of the vulnerabilities and affected systems go to Zoom Security Bulletins. IT Security Read more about IT Security service offerings.

Google has released new versions of Chrome to address High and other vulnerabilities in Google Chrome.For a complete description of the vulnerabilities and affected systems go to Chrome Releases.  IT Security Read more about IT Security service offerings.

SAP released a security update to address a vulnerability in SAP Web Dispatcher. An attacker can exploit this vulnerability to perform remote code execution.For a complete description of the vulnerabilities and affected systems go to Cross-Site Scripting (XSS) vulnerability in SAP Web Dispatcher. IT Security Read more about IT Security service offerings.