New Alerts for Synology, NETGEAR, SICK, Microsoft Edge, Moxa, and NetApp.
Synology
Synology has published 6 new bulletins identifying vulnerabilities in their products discovered during PWN2OWN. All allow remote attackers various access such as RCE and DoS.
Some patches available.
More info.
NETGEAR has published 7 new bulletins for their products. Some are remoitly exploitable without authentication. Highest CVSSv3 score of 8.2
More info.
SICK CDE-100 uses the open-source libraries FreeRTOS, lwIP and MCU Boot, which contain vulnerabilities that affect the SICK CDE-100. Highest CVSSv3 score of 9.8
No patches yet.
More info.
Microsoft has updated Edge with the latest chromium patches.
More info.
The EDS-P510 Series has been enhanced to address several key vulnerabilities. Highest CVSSv3 score of 6.5.
More info.
NetApp has published 10 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 10
Three include patches.
More info.
