By michele654 on Monday, 11 April 2022
Category: Vulnerabilities

New Vulnerabilities Monday 11 April

New Alerts for ABB, SICK, NetApp, HCL Software, and Linux.

ABB
Two vulnerabilities in third-party software affect ARM600 M2M Gateway. A successful exploit could allow attackers to execute code with root user privileges. Highest CVSSv3 score of 9.8
More info.

SICK
SICK has reported a vulnerability in the SICK MSC800 that allows an attacker to predict the TCP initial sequence number. CVSSv3 score of 5.4

More info.

NetApp
Multiple NetApp products incorporate ISC BIND. ISC BIND is susceptible to vulnerabilities that could lead to addition or modification of data or DoS. Highest CVSSv3 score of 7.5

More info.

HCL Software
Multiple vulnerabilities in IBM HTTP Server and WebSphere Application Server affect HCL Commerce. Highest CVSSv3 score of 9.8

More info.

HCL Software
HCL Unica Platform is vulnerable to XXE injection. Attackers can exploit this vulnerability to manipulate XML content and inject malicious external entity references. CVSSv3 score of 7.5
More info.

Linux
Oracle Linux has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

SecurityWizardry.com - Vulnerability Details

Leave Comments