New Alerts for BD, Digi, HashiCorp, CODESYS, Dell, and Linux.

BD 

BD has published updates for FACS Sample Prep Assistant and FACSLyric to fix vulnerabilities in third-party software.
More info.

Digi 

A security fix has been released for WR11, WR21, WR31, WR44R, WR44RR to patch the SSH entity to initialize an uninitialized variable, preventing the completion of an unauthenticated SSH sessions from starting after the first SSH session was established.
More info.

HashiCorp 

Vault and Vault Enterprise did not properly handle requests originating from unauthorized IP addresses. The Vault API server would shut down and no longer respond to HTTP requests, resulting in DoS.
More info.

CODESYS 

The CODESYS OPC UA stack of the CODESYS Control runtime system may incorrectly calculate the required buffer size for received requests/responses. This can lead to a crash of the CODESYS runtime system. CVSSv3 score of 7.5
More info.

Dell 

Dell has published security updates for VxRail, VxFlex Ready Node, and PowerFlex Custom Node. Dell rates these Critical.
More info. And here.

Linux 

Ubuntu has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts