Skip to main content Skip to local navigation

Alerts

Service Advisory - Scheduled Maintenance - MyApps - Thursday January 23rd 11:00 p.m. - Friday January 24th 1:00 a.m.

    Service Advisory   Please share the following with your teams. Service Maintenance: MyApps Scheduled Maintenance Window: Starting Thursday January 23, 2025 11:00 p.m. Ending Friday January 24, 2025 1:00 a.m. Impact/Details: MyApps service will be offline during the scheduled maintenance. The vendor has released a product update to correct a known issue where some users have […]

Openssh Remote Code Execution (RegreSSHion) (CVE-2024-6387)

    Service Advisory A Unauthenticated Remote code Execution (RCE) vulnerability (CVE-2024-6387) has been disclosed in OpenSSH’s servers which gives root privileges on glibc-based Linux system.   CVSS Score: 8.1/High   Description:- OpenSSH is a suite of networking utilities based on the Secure Shell (SSH) protocol. It is extensively used for secure remote login, remote server […]

RESOLVED Service Outage: Central SCCM, Friday January 3, 2025 10:00 a.m. - 10:10 a.m.

    Service Advisory   Please share the following with your technical teams. Unplanned Service Outage: Central SCCM   Timeframe: Start: Friday January 3, 2025 10:00 a.m. End: Friday January 3, 2025 10:10 a.m.   Impact/Details: Access to the SCCM management console was unavailable for desktop system administrators to manage OS and application deployment to […]

Service Advisory Unified Print Management - Friday January 3, 2025 5:00 p.m. - 11:59 p.m.

    Service Advisory   Please share the following with your teams. Service Maintenance: Unified Print Management   Scheduled Maintenance Window: Start: Friday January 3, 2025 5:00 p.m. End: Friday January 3, 2025 11:59 p.m.   Impact/Details: Service maintenance is necessary to address a known security vulnerability. Print services in the Administrative offices, Faculty student labs and Libraries […]

WordPress Vulnerable plugin (CVE-2024-11205)

    Service Advisory A critical vulnerability discovered in the WPForm plugins (CVE-2024-11205) which allows authenticated attackers to execute unauthorized refunds and cancellations of Stripe subscriptions.   CVSS Score: 8.5/High   Description: WPForms is a widely used form builder plugin, enabling WordPress site owners to create contact forms, feedback forms, subscription forms, and payment forms with a […]

WordPress Vulnerable plugin (CVE-2024-11205)

    Service Advisory A critical vulnerability discovered in the WPForm plugins (CVE-2024-11205) which allows authenticated attackers to execute unauthorized refunds and cancellations of Stripe subscriptions.   CVSS Score: 8.5/High   Description: WPForms is a widely used form builder plugin, enabling WordPress site owners to create contact forms, feedback forms, subscription forms, and payment forms with a […]

Service Advisory - YU Learn Planned Outage – Friday January 3, 2025 6:00 a.m. to 11:59 p.m.

    Service Advisory   Please share the following with your teams. Scheduled Outage:  YU Learn service (https://yulearn.yorku.ca)    Scheduled Date/Time of Service Outage:  Start: Friday January 3, 2025 6:00 a.m. End: Friday January 3, 2025 11:59 p.m.     Details and Impact: YU Learn's underlying Moodle course management platform will be updated to version 4.5, which brings […]

Upcoming Changes to YU Office and Google Apps Website

    Service Advisory Please share the following with your teams. Service Maintenance:   On the morning of December 10, 2024, UIT will be removing the YU Office and Google Apps websites.   Updated content is available on the UIT website: Microsoft 365 for Faculty & Staff Microsoft 365 for Students Google Apps for Students […]

Service Advisory - Outage rescheduled on PeopleSoft HR (Self Service and Admin Portal) - Saturday December 14, 2024 7 a.m. - 11 p.m.

    Service Advisory   Please share the following with your teams. Service Maintenance: PeopleSoft HR (Employee/Manager Self Service and Admin Portal) UIT will be performing scheduled maintenance on the PeopleSoft HR system to facilitate the implementation of the new National Occupation Codes (NOC) as required for compliance purposes. Maintenance window: Start Date/Time: Saturday, December […]

Apple OS vulnerabilities (CVE-2024-44308,CVE-2024-44309)

    Service Advisory   Apple has released emergency security updates to fix two zero-day vulnerabilities (CVE-2024-44308,CVE-2024-44309) that were exploited in attacks on Intel-based Mac system.   CVSS Score: 6.1 – 8.8   Description: The vulnerability in the JavaScriptCore may lead to arbitrary code execution by processing maliciously crafted web content.     Affected Versions :  […]