New Alerts for Leviton, Broadcom, IBM, F5, NetApp, and Linux.
Leviton
Leviton AcquiSuite and Energy Monitoring Hub contain a vulnerability could allow a remote attacker to craft a malicious payload in URL parameters that would execute in a client browser when accessed by a user, steal session tokens, and control the service. CVSSv3 score of 9.3
No response from Leviton.
More info.
Brocade ASC-Gateway OVA uses Netty, which has a known vulnerability that allows a remote attacker to cause a DoS. CVSSv3 score of 5.3
More info.
IBM has published Critical bulletins for Application Performance Management, AIX, and PowerVM Virtual I/O Server.
More info.
BIG-IP uses Apache Commons which contains a vulnerability that allow a remote attacker to cause a DoS. CVSSv3 score of 5.3
More info.
NetApp has published 15 bulletins for third-party software included in their products, 5 rated Critical, 6 rated High, and 4 rated Medium. Highest CVSSv3 score of 9.4
More info.
Ubuntu has updated the kernel. More info.
Rocky Linux 8 has updated the kernel. More info.
