New Alerts for Mitsubishi Electric, IBM, Dell, and Linux.
Mitsubishi Electric
DoS and RCE vulnerabilities exist in the Web function on MELSEC-Q and MELSEC-L Ethernet Interface Modules, and in the REST Server function on MELSEC iQ-R MES Interface Module. A remote attacker may cause a DoS or execute malicious code on target products by sending specially crafted packets. CVSSv3 score of 8.1
More info.
There is a vulnerability in the Nginx open source component. Nginx is used by IBM Cloud Private as a reverse proxy. The vulnerability could allow a remote attacker to obtain sensitive information. CVSSv3 score of 9.1
More info.
Dell BSAFE Micro Edition Suite has been updated to fix an Improper Certificate Validation vulnerability and a Buffer Over-Read vulnerability. CVSSv3 score of 7.5
More info.
Scientific Linux has updated rsyslog. More info.
Comments