By michele654 on Monday, 09 December 2024
Category: Vulnerabilities

New Vulnerabilities Monday 09 December


New Alerts for Phoenix Contact, SICK, QNAP, Python, IBM, Dell, and Linux.

Phoenix Contact 

PLCnext Firmware has been updated for Critical vulnerabilities in third-party software. Highest CVSSv3 score of 9.8
Moreinfo. And here.

SICK 

Multiple critical vulnerabilities were found in the SICK products InspectorP61x, InspectorP62x and TiM3xx. This allows a remote attacker to impact availability, integrity and confidentaility of the products. Highest CVSSv3 score of 9.
More info.

QNAP 

Updates are available for QTS and QuTShero to fix several security vulnerabilities. Highest CVSSv3 score of 8.7
More info.

A command injection vulnerability has been fixed in License Center that could allow a remote attacker to execute arbitrary commands. CVSSv3 score of 7.7
More info.

Python 

Python has a buffer write error that could be exploited to cause memory exhaustion. Highest CVSSv4 score of 8.7
More info.

IBM 

IBM has published Critical bulletins for Observability with Instana and App Connect Enterprise Certified Container.
More info.

Dell 

Dell has published a Critical bulletin for Clout Tiering Appliance/VE.
More info.

Linux 

SUSE has updated the kernel-firmware. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

SecurityWizardry.com - Vulnerability Details