New Alerts for IBM, Dell, NetApp, and PHP.

Tomorrow will see the release of the Critical OpenSSL 3.x update.  This affects so many products, watch for everyone to be updating for OpenSSL, while it begins to be exploited once details are released.  See the link below.

Splunk Quarterly Patches are expected tomorrow as well.


IBM 

Multiple security vulnerabilities are addressed in IBM Business Automation Manager Open Editions. Highest CVSSv3 score of 9.8
More info.

Dell 

Dell EMC Data Protection Central has been updated for multiple security vulnerabilities that could be exploited by remote attackers to compromise the affected system. Dell rates this Critical.
More info.

NetApp Exploit

NetApp has published 16 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.8. Several have patches, and several have public exploits.
More info.

PHP 

PHP 8.1 has been updated for two vulnerabilities. Highest CVSSv3 score of 9.8
More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts

Forthcoming OpenSSL Releases

https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html