New Alerts for QNAP, IBM, Sophos, and NetApp.
QNAP
A vulnerability has been reported to affect QNAP VS Series NVR running QVR. If exploited, this vulnerability allows remote attackers to run arbitrary commands. QNAP rates this Critical.
More info.
A vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, this vulnerability allows attackers to compromise the security of the system. QNAP rates this High.
More info.
Multiple vulnerabilities have been reported to affect QTS, QuTS hero, and QuTScloud. If exploited, these vulnerabilities allows remote attackers to run arbitrary commands, traverse the file system to unintended locations and read or overwrite files, inject malicious code, or redirect users to an untrusted page that contains malware. QNAP rates this High.
More info.
A path traversal vulnerability in thttpd has been reported to affect QNAP devices running QTS, QuTS hero, and QuTScloud. If exploited, this vulnerability allows attackers to access and read sensitive data. QNAP rates this Medium.
More info.
Multiple vulnerabilities have been reported to affect QNAP NAS running certain versions of Video Station. If exploited, this vulnerability allows remote attackers to access sensitive data, perform unauthorized actions, and compromise the security of the system. QNAP rates this Medium.
More info.
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to arbitrary code execution in IBM WebSphere Application Server. CVSSv3 score of 9.8
More info.
IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities in third-party software and IBM WebSphere Application Server Liberty. Highest CVSSv3 score of 9.8
More info.
Sophos Firewall has been updated to fix several security vulnerabilities, including an authentication bypass vulnerability allowing RCE rated Critical.
More info.
NetApp has published 7 new bulletins identifying vulnerabilities in third-party software included in their products. No patches yet.
More info.
Comments