New Alerts for ProFTPD, BD, GE Gas Power, Microsoft (Exploit), HPE, and NetApp.
Have a wonderful holiday season!
ProFTPD
A vulnerability in ProFTPD allows a DoS. Probably a CVSSv3 score of 7.5
More info.
BD has published security patches to fix vulnerabilities in third-party software in Kiestra TLA Track, Kiestra InoqulA+, and Kiestra InoqulA
More info.
GE Gas Power uses Triangle Microworks SCADA Data Gateway that includes a RCE vulnerability. They have validated and recommend updating. CVSSv3 score of 9.8
More info.
Microsoft has updated Edge to fix the latest security vulnerability reported in chromium. Exploits exist.
More info.
Potential security vulnerabilities have been identified in HPE Unified OSS Console that could lead to Access Restriction Bypass, Arbitrary Code Execution, Authentication Bypass, Compromise of System Integrity, Buffer Overflow, and DoS. Highest CVSSv3 score of 9.8
More info. And here.
NetApp has published 11 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 8.8
Only one includes patches.
More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page