By michele654 on Friday, 24 June 2022
Category: Vulnerabilities

New Vulnerabilities Friday 24 June


New Alerts for Secheron, Pyramid Solutions, Microsoft Edge, Hitachi, Brocade, WatchGuard, and Linux.

Secheron 

Secheron SEPCOS Control and Protection Relay contains multiple security vulnerabilities, including Improper Enforcement of Behavioral Workflow, Lack of Administrator Control over Security, Improper Privilege Management, Insufficiently Protected Credentials, and Improper Access Control. An attacker can obtain full, root access over the device in multiple ways with access to the PLC's functions only used by the vendor. Highest CVSSv3 score of 9.9
More info.

Pyramid Solutions 

Pyramid Solutions EtherNet/IP Adapter Development Kit contains an Out-of-bounds Write vulnerability. A remote attacker with access to the EtherNet/IP network can send a specially crafted packet to cause a DoS. CVSSv3 score of 9.8
More info.

Microsoft 

Microsoft has updated chromium-based Edge to include the latest security updates from chromium.
More info.

Hitachi 

Cosminexus HTTP Server and Hitachi Web Server have been updated to correct a security vulnerability. CVSSv3 score of 9.8
More info.

Brocade 

Brocade has published 9 new bulletins fixing security vulnerabilities in SANnav and ASCG OVA. Highest CVSSv3 score of 9.4
More info.

WatchGuard 

WatchGuard has published 7 new bulletins fixing security vulnerabilities in Firebox Fireware OS. Highest CVSSv3 score of 9.8
More info.

Linux 

Oracle Linux has updated the microcode. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

SecurityWizardry.com - Vulnerability Details

Leave Comments