New Vulnerabilities Thursday 02 June


New Alerts for Mitsubishi Electric, IBM, Dell, and Linux.

Mitsubishi Electric 

DoS and RCE vulnerabilities exist in the Web function on MELSEC-Q and MELSEC-L Ethernet Interface Modules, and in the REST Server function on MELSEC iQ-R MES Interface Module. A remote attacker may cause a DoS or execute malicious code on target products by sending specially crafted packets. CVSSv3 score of 8.1
More info.

IBM 

There is a vulnerability in the Nginx open source component. Nginx is used by IBM Cloud Private as a reverse proxy. The vulnerability could allow a remote attacker to obtain sensitive information. CVSSv3 score of 9.1
More info.

Dell 

Dell BSAFE Micro Edition Suite has been updated to fix an Improper Certificate Validation vulnerability and a Buffer Over-Read vulnerability. CVSSv3 score of 7.5
More info.

Linux 

Scientific Linux has updated rsyslog. More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/

Find Out More

© Computer Network Defence Limited 2022