Monthly Patches are out for MediaTek. New Alerts for Cisco, NetApp, WithSecure, Mitel, and Linux.
Cisco
Cisco has published 13 new bulletins. 3 rated High, 9 rated Medium, 1 Informational. Highest CVSSv3 score of 8.8
More info.
A vulnerability in the Vector Packet Processor (VPP) of Cisco Packet Data Network Gateway (PGW) could allow a remote attacker to stop ICMP traffic from being processed over an IPsec connection. CVSSv3 score of 5.8
More info.
MediaTek Monthly Patches include 30 patched vulnerabilities, 7 rated High and 23 rated Medium.
More info.
NetApp has published 7 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 7.8. Four have patches.
More info.
A DoS vulnerability was discovered in WithSecure products where the antivirus engine scanner goes into long infinite loop when processing certain file types. The exploit can be triggered remotely by an attacker.
This is fixed with automatic updates.
More info.
An authentication vulnerability has been identified in the web conferencing component of Mitel MiCollab which could allow an unauthenticated attacker to download shared files. A successful exploit could allow access to sensitive information. CVSSv3 score of 5.9
More info.
Red Hat has updated kpatch. More info.
Oracle Linux has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
Amazon Linux has updated microcode_ctl. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page