New Alerts for Sophos, MISP, Horner Automation, IBM, Asterisk, Google ChromeOS, NetApp, and Linux.
Sophos
Sophos Firewall has been updated to fix several security vulnerabilities, include RCE via the User Portal and Webadmin. Highest CVSSv3 score of 9.8
More info.
The latest version of MISP includes two security fixes for Critcal vulnerabilities. CVSSv3 score of 10 according to CERT Bund.
More info.
Horner Automation Remote Compact Controller update fixes 3 vulnerabilities. Successful exploitation of these vulnerabilities could allow an attacker to obtain credentials to the affected device and obtain complete control. Highest CVSSv3 score of 9.8
More info.
IBM App Connect Enterprise Certified Container operands may be vulnerable to arbitrary code execution. Highest CVSSv3 score of 9.8
More info. And here. And here. And here. And here. And here.
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in cURL libcurl. CVSSv3 score of 9.8
More info.
Asterisk has published a bulletin identifying a remote crash vulnerability in H323 channel add on.
More info.
Google has updated ChromeOS and fixed 1 High Severity bug.
More info.
NetApp has published 4 new bulletins identifying vulnerabilities in third-party software included in their products. No patches yet. Highest CVSSv3 score of 8.8
More info.
Ubuntu has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page