New Alerts for curl, WebIQ, F5, and ABB.
curl
When curl is built to use the GnuTLS library and told to use OCSP stapling to verify that the server certificate is valid, it might fail to detect some OCSP problems and instead wrongly consider the response as fine.
More info.
The Windows version of WebIQ is affected by a directory traversal vulnerability that allows remote attackers to read any file on the system. CVSSv3 score of 8.6
No patch yet.
More info.
Traffix SDC uses CPAN.pm which contains a vulnerability that may allow a remote attacker to inject into the network path and perform a MITM attack, causing confidentiality or integrity issues. CVSSv3 score of 7.4
More info.
REF630, REG630, REM630 and RET630 equipment contains vulnerabilities that could result in a DoS. Highest CVSSv4 score of 8.2
More info.
Comments