New Alerts for Delta Electronics, Subnet Solutions, TEM, Xerox, Microsoft Edge, CUPS, and Linux.
Delta Electronics
DIAEnergie contains a SQL Injection vulnerability that could allow a remote attacker to retrieve records or cause a DoS. Highest CVSSv4 score of 9.3
More info. And here.
PowerSYSTEM Center contains several vulnerabilities that could result in a remote attacker to bypass a proxy, cause a DoS, or expose sensitive information. Highest CVSSv3 score of 7.5
More info.
Opera Plus FM Family Transmitter contains severa vulnerabilities that could allow a remote attacker to achieve RCE. Highest CVSSv4 score of 9.3
No response from vendor.
More info.
Xerox has resolved multiple RCE vulnerabilities found in FreeFlow Core.
More info.
Microsoft has updated Edge with the latest chromium updates.
More info.
CUPS cups-browsed will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added. The request can be used to create DDoS amplification attacks.
More info. And here.
Debian has updated the kernel. More info.
Amazon Linux 2 has updated the kernel. More info.
AlmaLinux has updated the kernel and cups-filters. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page