New Alerts for Google Chrome for Desktop (Exploit), Microsoft Edge (Exploit), Delta, Alpitronic, Juniper, HP, and Mozilla.
Google Exploit
Google has updated Chrome for Desktop to fix one security vulnerability rated High that is being actively exploited.
More info.
Microsoft is aware. More info.
Delta Electronics InfraSuite Device Master contains a deserialization of untrusted data vulnerability because it runs a vulnerable version of Apache ActiveMQ. CVSSv4 score of 9.3
More info.
Hypercharger EV charging devices can expose a web interface protected by authentication. If the default credentials are not changed, an attacker can use public knowledge to access the device as an administrator. CVSSv4 score of 8.3
Mitigations only, don't put it on the Internet, changing the default password.
More info.
Juniper has reported on multiple vulnerabilities reported in OpenSSH, used in Junos OS and Junos OS Evolved. Not all vulnerabilities are exploitable. Highest CVSSv3 score of 9.8
More info.
A vulnerability has been reported in the Grails open-source web framework used by Teradici PCoIP Management Console, which could lead to a JVM crash or DoS. CVSSv3 score of 7.5
More info.
A vulnerability in Mozilla PDF.js could allow for arbitrary code execution when opening a malicious PDF.
More info. And here.
