Skip to main content

CND News and Blog

New Vulnerabilities Thursday 10 April


Monthly Patches are out for Juniper Networks and Palo Alto Networks. New Alerts for Dell, Splunk, MedDream, Spring, and Linux.

Juniper 

Monthly Patches are out with 24 new bulletins, 1 rated Critical, 13 rated High, and 10 rated Medium. Products updated include CTP View, Junos Space, Junos OS, and Junos OS Evolved. Highest CVSSv3 score of 10
More info.

Dell 

Dell has published a Critical bulletin for PowerProtect Cyber Recovery.
More info.

Splunk 

Splunk has published 15 new bulletins identifying vulnerabilities in third-party packages included in their products. Two are rated Critical, 12 rated High, and 1 rated Medium.
More info.

MedDream 

Multiple RCE vulnerabilities in parsing DICOM files affect MedDream PACS Server.
More info.

Spring 

Spring Cloud Config Server may not use Vault token sent by clients using a X-CONFIG-TOKEN header when making requests to Vault. CVSSv3 score of 7.5
More info.

Palo Alto Networks 

Monthly Patches include 11 bulletins, affecting GlobalProtect App, Cortex XDR Agent, Prisma SD_WAN, PAN-OS, Cortex XDR Broker, and Prisma Access Browser. Highest CVSSv3 score of 7.6
More info.

Linux 

SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Oracle Linux has updated grub2. More info.
Ubuntu has updated the kernel. More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/