New Alerts for Google Chrome, IBM, QNAP (Exploit), Veritas, and WithSecure.
Google has updated Chrome for Desktop with 1 security fix.
More info.
IBM Business Process Manager and IBM Business Automation Workflow are vulnerable to a prototype pollution attack. CVSSv3 score of 9.8
More info.
QNAP detected a new DeadBolt ransomware campaign on the morning of September 3rd, 2022 (GMT+8). The campaign appears to target QNAP NAS devices running Photo Station with internet exposure.
More info. And here.
A Reflected XSS vulnerability affects the Desktop Laptop Option application login page. This allows remote attackers to inject arbitrary web script into the HTTP parameter which reflects the user input without sanitization due to Improper Neutralization of Input During Web Page Generation. CVSSv3 score of 6.1
More info.
A DoS vulnerability was discovered in WithSecure products where aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine. The exploit can be triggered remotely by an attacker.
More info.
