New Alerts for Apache Solr and Wicket, Microsoft Edge, Wind River Systems, Supermicro, Canon, NetApp, and Linux.
Apache
Solr contains 2 vulnerabilities, zipslip and use of arbitrary files. CVSSv3 score of 8.8
More info. And here.
The request handling in the core in Apache Wicket allows an attacker to create a DoS via multiple requests to server resources. CVSSv3 score of 9.8
More info.
Edge has been updated with the latest chromium updates and to fix 1 Edge-specific vulnerability.
More info.
The password hashing algorithms used in VxWorks are weak and can be cracked efficiently.
No patches, treated as a feature upgrade.
More info.
Several security issues have been discovered in Supermicro BMC Firmware. CVSSv3 score of 7.5
More info.
Multiple buffer overflow vulnerabilities exist in the Canon Laser Printers and Small Office Multifunctional Printers. Highest CVSSv3 score of 9.1
More info.
NetApp has published 14 bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 8.8
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Red Hat has updated rsync. More info.
Amazon Linux 2 and 2023 have updated the kernel. More info. And here.
AlmaLinux has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page