New Alerts for Medtronic, Delta Electronics, GitLab, Microsoft Edge, IBM, Synology, Tenable, and Linux.
Medtronic
Medtronic has identified a vulnerability in an optional messaging feature in the Paceart Optima cardiac device data workflow system. This vulnerability could result in the system's cardiac device data being deleted, stolen, or modified, or being used for further network penetration. CVSSv3 score of 9.8
More info.
InfraSuite Device Master contains Improper Access Control and Deserialization of Untrusted Data vulnerabilities. Successful exploitation could allow a remote attacker to escalate privileges or remotely execute arbitrary code. Highest CVSSv3 score of 9.8
More info.
GitLab has been updated to fix several security vulnerabilities. Highest CVSSv3 score of 7.5
More info.
Microsoft has updated Edge with the latest vulnerability fixes from chromium.
More info.
Multiple vulnerabilities affect the IBM App Connect Enterprise Toolkit and the IBM Integration Bus Toolkit. Highest CVSSv3 score of 9.8
More info.
Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for June 2023. Highest CVSSv3 score of 9.8
More info.
IBM OpenPages for IBM Cloud Pak for Data is vulnerable to Spring Web Unsafe Deserialization. Note this vulnerability is from 2016. CVSSv3 score of 9.8
More info.
Multiple vulnerabilities fixed in IBM Security Verify Governance - Identity Manager Virtual Appliance. Note these vulnerabilities date back to 2015. Highest CVSSv3 score of 9.8
More info.
Multiple vulnerabilities allow remote attackers to potentially inject SQL commands and inject arbitrary web scripts or HTML via a susceptible version of Mail Station. Synology rates this Critical.
More info.
Nesus Network Monitor has been updated to fix security vulnerabilities in included third-party software. CVEs date back to 2010. Highest CVSSv3 score of 9.8
More info.
Ubuntu has updated the kernel. More info.
Amazon Linux 2 has updated the kernel. More info.
