New Alerts for Microsoft Edge (exploit), PowerDNS, Apache OFBiz, Belden, NetApp, and Linux.
Microsoft Exploit
Microsoft has updated Edge with the latest chromium vulnerability fixes and one Edge-specific fix.
There are active exploits.
More info.
When incoming DNS over HTTPS support is enabled using the nghttp2 provider a remote attacker can trigger a DoS. CVSSv3 score of 7.5
More info.
A path traversal vulnerability has been discovered in Apache OFBiz, which could allow for RCE.
More info. And here.
Multiple BusyBox vulnerabilities affect BAT-C2 and OWL Highest CVSSv3 score of 8.8
More info.
NetApp has published 13 bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.4
No patches yet.
More info.
Oracle Linux has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page