New Alerts for Microsoft Edge (exploit), PowerDNS, Apache OFBiz, Belden, NetApp, and Linux.

Microsoft Exploit

Microsoft has updated Edge with the latest chromium vulnerability fixes and one Edge-specific fix.
There are active exploits.
More info.

PowerDNS 

When incoming DNS over HTTPS support is enabled using the nghttp2 provider a remote attacker can trigger a DoS. CVSSv3 score of 7.5
More info.

Apache 

A path traversal vulnerability has been discovered in Apache OFBiz, which could allow for RCE.
More info. And here.

Belden 

Multiple BusyBox vulnerabilities affect BAT-C2 and OWL Highest CVSSv3 score of 8.8
More info.

NetApp 

NetApp has published 13 bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.4
No patches yet.
More info.

Linux 

Oracle Linux has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts