New Alerts for Contec Health, New Rock Technologies, Microsoft Edge, Dell, NetApp, and BD.
Contec Health
CMS8000 Patient Monitor contains several vulnerabilities that could allow a remote attacker to remotely send specially formatted UDP requests or connect to an unknown external network that would allow them to write arbitrary data resulting in remote code execution, or leak patient information and sensor data. Highest CVSSv4 score of 9.3
FDA recommends removing these devices from the network.
More info.
OM500 IP-PBX, MX8G VoIP Gateway, and NRP1302/P Desktop IP Phone contains several vulnerabilities. Highest CVSSv4 score of 9.3
No response from the vendor.
More info.
Microsoft has updated Edge to include the latest chromium patches.
More info.
Dell has published Critical bulletins for PowerProtect DD, Data Protection Central, VxRail, NetWorker, PowerProtect DP Series Appliance.
More info.
NetApp has published 11 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.8
Two have patches.
More info.
BD has published security patches for Accuri C6 Plus.
More info.
