New Alerts for IBM, HPE, WithSecure, and Linux.
IBM
Vulnerabilities in libcurl such as bypassing security restrictions, obtaining sensitive information, and MitM attacks may affect Spectrum Protect Plus and Spectrum Copy Data Management. Highest CVSSv3 score of 9.8.
More info. And here.
Apache Commons Configuration could allow a remote attacker to execute arbitrary code on the system, caused by a flaw when using the interpolation defaults. IBM Sterling Control Center uses Apache Commons Configuration. CVSSv3 score of 9.8
More info.
Multiple security vulnerabilities have been identified in HPE SAN switches with Brocade Fabric OS (FOS). These vulnerabilities allow a remote attacker to arbitrarily execute code, cause DoS, perform disclosure of sensitive information, access sensitive information, cause memory corruption and perform unauthorized access to files. Highest CVSSv3 score of 9.8
More info.
A DoS vulnerability was discovered in WithSecure products where aerdl.so/aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine. The exploit can be triggered remotely by an attacker.
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Comments