New Alerts for Leviton, Broadcom, IBM, F5, NetApp, and Linux.

Leviton

Leviton AcquiSuite and Energy Monitoring Hub contain a vulnerability could allow a remote attacker to craft a malicious payload in URL parameters that would execute in a client browser when accessed by a user, steal session tokens, and control the service. CVSSv3 score of 9.3
No response from Leviton.
More info.

Broadcom

Brocade ASC-Gateway OVA uses Netty, which has a known vulnerability that allows a remote attacker to cause a DoS. CVSSv3 score of 5.3
More info.

IBM

IBM has published Critical bulletins for Application Performance Management, AIX, and PowerVM Virtual I/O Server.
More info.

F5

BIG-IP uses Apache Commons which contains a vulnerability that allow a remote attacker to cause a DoS. CVSSv3 score of 5.3
More info.

NetApp

NetApp has published 15 bulletins for third-party software included in their products, 5 rated Critical, 6 rated High, and 4 rated Medium. Highest CVSSv3 score of 9.4
More info.

Linux

Ubuntu has updated the kernel. More info.
Rocky Linux 8 has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts