New Alerts for Microsoft Edge, Microsoft Office, Dorsett Controls, B&R Automation, Jenkins, GitLab, IBM, and Linux.

Microsoft 

Microsoft has updated Edge with the latest chromium fixes, plus 2 Edge-specific fixes.
More info.

Microsoft Office contains a spoofing vulnerability. CVSSv3 score of 7.5
More info.

Dorsett Controls 

InfoScan contains several vulnerabilities, including Exposure of Sensitive Information To An Unauthorized Actor and Path Traversal. Highest CVSSv4 score of 6.9
Note this was patched in July.
More info. And here.

B&R Automation 

B&R Automation Runtime contains several vulnerabiltiies that could allow a remote attacker to make the product inaccessible, decrypt communication, or inject IP-based traffic into another network segment. Highest CVSSv4 score of 8.3
More info.

Jenkins 

Several vulnerabilties have been fixed in Jenkins core. The highest is rated Critical.
More info.

Jenkins 

Several vulnerabilties have been fixed in Jenkins core. The highest is rated Critical.
More info.

GitLab 

GitLab has been updated to patch several vulnerabilities, all rated Medium. Highest CVSSv3 score of 6.8
More info.

IBM 

IBM has several new bulletins rated severity of Critical.
More info.

Linux 

Oracle Linux has updated the kernel and linux-firmware. More info.
Ubuntu has updated the kernel. More info.
AlmaLinux has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts