Skip to main content

CND News and Blog

New Vulnerabilities Monday 26 August


New Alerts for Avtec, Trumpf, IBM, F5, and NetApp. 

Avtec 

Outpost 0810 and Outpost Uploader Utility contain 2 vulnerabilities, Storage of File with Sensitive Data Under Web Root, and Use of Hard-coded Cryptographic Key. Highest CVSSv4 score of 8.7
More info.

Trumpf 

TruControl laser control software uses OpenSSH server and is affected by the RegreSSHion vulnerability. CVSSv3 score of 8.1
More info.

IBM 

Multiple vulnerabilities were addressed in IBM Application Performance Management. Highest CVSSv3 score of 9.8
More info.

IBM Concert Software uses multiple open source libraries which are susceptible to various security vulnerabilities. Highest CVSSv3 score of 10
More info.

F5 

BIG-IP contains a vulnerability that allows a remote attacker to crafting HTTP requests with deliberately incorrect URL encoding, potentially bypassing security controls that rely on proper URL parsing and authentication. CVSSv3 score of 7.5
No patch yet.
More info.

NetApp 

NetApp has published 10 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.0
Only 1 has a patch.
More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Sunday, 08 December 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/