New Alerts for IBM, NetApp, Google ChromeOS, and Apache Tomcat.

IBM 

IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from systemd, libcap, openssl-libs, libxml2, go-toolset, and prometheus-operator. Highest CVSSv3 score of 9.8
More info.

NetApp 

NetApp has published 2 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.8
No patches yet.
More info.

Google 

Google has updated ChromeOS / ChromeOS Flex to fix several security vulnerabilities.
More info.

Apache 

Apache has updated Tomcat to fix an issue that allows FORM authentication to trigger a redirect to an URL of the attackers choice.
More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts