New Alerts for IBM, NetApp, Google ChromeOS, and Apache Tomcat.
IBM
IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from systemd, libcap, openssl-libs, libxml2, go-toolset, and prometheus-operator. Highest CVSSv3 score of 9.8
More info.
NetApp has published 2 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.8
No patches yet.
More info.
Google has updated ChromeOS / ChromeOS Flex to fix several security vulnerabilities.
More info.
Apache has updated Tomcat to fix an issue that allows FORM authentication to trigger a redirect to an URL of the attackers choice.
More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page