Quarterly Patches are out for F5. New Alerts for BD, Rockwell Automation, Apple, IBM, and GitLab.
BD
BD has published updates for vulnerabilities in 3rd party software included in Pyxis.
More info.
FactoryTalk Historian SE use the AVEVA PI Server, which contains vulnerabilities that could allow a remote attacker to cause a DoS. CVSSv4 score of 7.7
More info.
Apple has published a security update for iTunes for Windows.
More info.
QRadar SIEM includes vulnerable components that could be identified and exploited with automated tools. Highest CVSSv3 score of 9.8
More info.
F5 has published their Quarterly Patches, with 7 rated High and 6 rated Medium. Highest CVSSv3 score of 8.0
More info.
Several vulnerabilities have been fixed in GitLab CE/EE. One rated High allows a remote attacker to cause a DoS by crafting unusual search terms for branch names. Highest CVSSv3 score of 7.5
More info.
