New Alerts for Microsoft Edge, Microsoft Azure, EG4 Electronics, Packet Power, Burk Technology, F5, IBM, and Linux.
Microsoft
Microsoft has updated Edge with the latest chromium fixes.
More info.
Microsoft has updated Azure with 2 fixes for vulnerabilities. No customer action is required. Highest CVSSv3 score of 10.
More info. And here.
EG4 Electronics has acknowledge several vulnerabilities in EG4 Inverters that allow a remote attacker to intercept and manipulate critical data, install malicious firmware, hijack device access, and gain unauthorized control over the system. Highest CVSSv4 score of 9.2
A fix is being worked on.
More info.
Packet Power equipment EMX, EG contain a missing authentication vulnerability that could allow a remote attacker to gain full access to the device without authentication. CVSSv4 score of 9.3
More info.
Burk Technology equipment ARC Solo contains a missing authentication vulnerability that allows a remote attacker to gain access to the device, lock out authorized users, or disrupt operations. CVSSv4 score of 9.3
More info.
Traffix SDC contains an Apache Tomcat vulnerability that could allow a remote attacker to achieve DoS. CVSSv3 score of 5.3
No patches yet.
More info.
IBM has published Critical bulletins for Application Performance Management, Db2, and IBM i.
More info.
AlmaLinux has updated the kernel and kernel-rt. More info.
