New Alerts for Moxa, Squid, Westermo, SICK, LANCOM, NetApp, and Linux.
Oracle has published their Pre-Release bulletin for Tuesday's Quarterly Patches. More info.
Moxa
Moxa is reporting 5 vulnerabilities in their Network Security Appliances and Routers, 3 rated Critical, 1 rated High, and 1 rated Medium. Highest CVSSv4 score of 9.9
More info.
Due to a failure to redact HTTP Authentication credentials Squid is vulnerable to an Information Disclosure attack. CVSSv3 score of 10.
More info.
Westermo has published 3 new bulletins, 1 of which allows a remote attacker to obtain sensitive information. Highest CVSSv3 score of 8.2
More info.
SICK has published 2 new bulletins, 1 for Endress+Hauser, and 1 affecting Enterprise Analytics and Logistic
Analytics Products. Highest CVSSv3 score for the SICK product bulletin is 7.5
More info.
LANCOM R&S Firewalls use Redis, that has a Critical vulnerability with a CVSSv3 score of 10. LANCOM states the way Redis is used minimizes the risk to their Firewalls.
More info.
NetApp has published 14 new bulletins identifying vulnerabilities in third-party software included in their products, 12 rated High and 2 rated Low. Highest CVSSv3 score of 8.2
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
AlmaLinux has updated the kernel. More info.
