Monthly Patches are out for Palo Alto Networks and Juniper Networks. New Alerts for Wireshark, Veeam, Mitel, Xylem, and Linux.
Palo Alto Networks
Monthly Patches are out with 6 bulletins, 1 rated Critical, 1 rated High, 3 rated Medium, and 1 rated Informational. Highest CVSSv4 score is 9.3
More info.
Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover by a remote attacker. CVSSv4 score of 9.3
More info.
It is possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. CVSSv3 score of 7.5
More info.
A vulnerability in Veeam Recovery Orchestrator allows a remote attacker to access the VRO web UI with administrative privileges. The attacker must know the exact username and role of an account that has an active VRO UI access token. CVSSv3 score of 9.0
More info.
Juniper Monthly Patches include 46 bulletins, 1 rated Critical, 18 rated High, and 27 rated Medium. Highest CVSSv3 score of 9.8
More info.
Multiple vulnerabilities have been resolved in third-party software included in Junos Space. Highest CVSSv3 score of 9.8
More info.
Mitel OpenScape Voice Trace Manager, MiContact Center Enterprise, and Mitel CMG Suite use a vulnerable version of PHP. Highest CVSSv3 score of 9.8
More info. And here.
Sensus Base Station products run a vulnerable OpenSSH. CVSSv3 score of 8.1
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Amazon Linux has updated the kernel. More info.
