New Alerts for Omron, Microsoft Edge (Exploit), IBM, F5, Synology, and NetApp.
Omron
Due to the multiple vulnerabilities caused by OpenSSL in NJ/NX-series Machine Automation Controllers, information may be leaked or cause a DoS. Highest CVSSv3 score of 7.5
More info.
Due to an Insufficient Verification of Data Authenticity vulnerability which exists in the NJ/NX-series Machine Automation Controllers, it may not be possible to detect that the user program within the product has been tampered with. CVSSv3 score of 4.8
More info.
Microsoft has updated Edge to fix the latest chromium exploit.
More info.
IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Node.js CVSSv3 score of 9.8
More info.
A vulnerability allows remote attackers to conduct DoS attacks via a susceptible version of Synology Camera BC500 Firmware and Synology Camera TC500 Firmware.
More info.
BIG-IP includes a version of Apache that has a vulnerability that allows malicious or exploitable backend/content generators to split HTTP responses. CVSSv3 score of 6.8
No patches yet.
More info.
NetApp has published 15 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 10.
Two of the bulletins have patches available.
More info.
