Skip to main content

CND News and Blog

New Vulnerabilities Friday 23 August


New Alerts for Microsoft Edge (Exploit) and Entra ID, SonicWall, Rockwell Automation, SolarWinds, Broadcom, and F5.

Microsoft Exploit

Microsoft has updated Edge to include the latest chromium patches as well as 4 Edge specific patches. Exploits are in the wild.
More info.

Improper access control in Decentralized Identity Services allows an unathenticated attacker to disable Verifiable ID's on another tenant. CVSSv3 score of 7.5
More info.

SonicWall 

An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash. CVSSv3 score of 8.6
More info.

Rockwell Automation 

ThinManager ThinServer contains Information Disclosure and RCE vulnerabilities. Highest CVSSv4 score of 9.3
More info.

SolarWinds 

Web Help Desk (WHD) is affected by a hardcoded credential vulnerability, allowing a remote attacker to access internal functionality and modify data. CVSSv3 score of 9.1
More info.

Broadcom 

Tanzu has 20 security bulletins published that identify vulnerabilities in third-party software included in their product. 1 is rated High, 18 Medium, and 1 Low.
More info.

F5 

BIG-IP (DNS) contains a vulnerability in the BIND process that allows a remote atatcker to cause a DoS. CVSSv3 score of 7.5
No patch yet.
More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Sunday, 08 December 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/