New Alerts for Cisco, HPE, NetApp, IBM, and Django.
Cisco
Cisco has published 10 new bulletins, 1 rated Critical, 2 rated High, and 7 rated Medium.
More info.
A vulnerability in AWS, Microsoft Azure, and OCI cloud deployments of Cisco ISE could allow a remote attacker to access sensitive data, execute limited administrative operations, modify system configurations, or disrupt services within the impacted systems. CVSSv3 score of 9.9
More info.
A vulnerability in the SSH implementation of Cisco NDFC could allow a remote attacker to impersonate Cisco NDFC-managed devices. CVSSv3 score of 8.7
More info.
HPE has published an update for Insight Remote Support that fixes previously reported zero-day vulnerabilities. Highest CVSSv3 score of 9.8
More info.
NetApp has published 10 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CSSv3 score of 9.8
More info.
IBM has published Critical bulletins for Concert Software, Maximo AI Service, QRadar Suite, Storage Software, Guardium Data Security, Knowledge Catalog,
More info.
Internal HTTP response logging allows control characters to be written unescaped into logs. This could enable log injection or forgery, letting attackers manipulate log appearance or structure. CVSSv3 score of 4.0
More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page