New Alerts for Cisco, IBM, Aruba, Wireshark, Tenable, and Linux.
Cisco
Cisco has published 5 new bulletins, 2 rated High, 2 Medium, and 1 Informational. Highest CVSSv3 score of 8.6
More info.
A vulnerability in the messaging interface of Cisco Webex App, formerly Webex Teams, could allow an unauthenticated, remote attacker to manipulate links or other content within the messaging interface. CVSSv3 score of 4.3
More info.
A vulnerability in the IPSec VPN Server authentication functionality of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to bypass authentication controls and access the IPSec VPN network. CVSSv3 score of 4.0
More info.
There is a vulnerability in the version of Apache Commons Configuration that was included in IBM SPSS Analytic Server and IBM Sterling Connect:Direct for UNIX. CVSSv3 score of 9.8
More info. And here.
IBM Planning Analytics Workspace is affected by multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.
Aruba has released updates to ClearPass Policy Manager that address multiple security vulnerabilities. Highest CVSSv3 score of 8.8
More info.
It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
More info.
Tenable.sc has been updated to correct a security vulnerability in third-party software included in the product. CVSSv3 score of 7.5
More info.
Oracle Linux has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page