New Alerts for IBM, F5, NetApp, Xerox, Zoom, and Linux.
IBM
QRadar Suite Software includes components with known vulnerabilities. Highest CVSSv3 score of 9.9
More info.
IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of requirejs. CVSSv3 score of 9.8
More info.
Apache Derby could allow a remote attacker to bypass security restrictions to view and corrupt sensitive data and run sensitive database functions and procedures. CVSSv3 score of 9.1
More info.
There are multiple vulnerabilities in Java, Node.js and IBM WebSphere Application Server Liberty used by IBM Cloud Transformation Advisor. Highest CVSSv3 score of 9.8
More info.
F5 has published 5 new bulletins that are exploitable by remote attackers. Highest CVSSv3 score of 8.8
More info.
BIG-IP, BIG-IQ, and Traffix SDC are vulnerable to a DoS due to libarchive. Highest CVSSv3 score of 5.9
More info.
BIG-IP Next SPK and CNF are vulnerable to OpenSSH and could allow RCE. CVSSv3 score of 8.1
More info.
Traffix SDC contains a vulnerability in libjpeg-turbo that allows a remote attacker to cause a DoS or code execution. Highest CVSSv3 score of 8.8
More info. And here.
NetApp has published 10 new bulletins identifying vulnerabilties in third-party software included in their products. Highest CVSSv3 score of 9.8
No patches yet.
More info.
Xerox has updated FreeFlow Print Server v2 / Window s10 to fix vulnerabilities in third-party software.
More info.
Zoom has published a bulletin for an Information Disclosure vulnerability in Workplace Apps. CVSSv3 score of 5.3
More info.
FreeBSD has been updated for . More info.
OpenSUSE has updated systemd. More info.
Alpine Linux has put out version 3.17.10 More info.