Monthly Patches are out for Cisco and Palo Alto Networks. New Alerts for Microsoft Edge, Xerox, ABB, Lenovo, and Linux.
Cisco
Cisco has published 11 bulletins, 8 rated High and 3 rated Medium. Highest CVSSv3 score of 8.6
More info.
Vulnerabilities in the IPv4 ACL feature, QoS policy feature, and Layer 3 multicast feature of Cisco IOS XR Software for Cisco ASR 9000, ASR 9902 Compact, and ASR 9903 Compact could allow a remote attacker to cause a line card to reset, resulting in a DoS. CVSSv3 score of 8.6
More info. And here.
A vulnerability in the IKEv2 function of Cisco IOS XR Software could allow a remote attacker to prevent an affected device from processing any control plane UDP packets. CVSSv3 score of 7.5
More info.
Palo Alto Networks has published 6 bulletins, 1 rated High, 4 rated Medium, and 1 rated Low. Highest CVSSv3 score of 7.6
More info.
Microsoft has updated Edge with the latest chromium updates.
More info.
Xerox has published Security updates for FreeFlow Print Server.
More info.
RMC-100 and RMC-100 LITE has been updated to fix a vulnerability that allows a remote attacker to send a specially crafted message to the web UI node, causing a DoS. CVSSv3 score of 7.5
More info.
Lenovo has published a bulletin for BIOS from vendors that could allow a remote attacker to cause a DoS.
More info.
An authentication bypass vulnerability in the MegaRAC Redfish Host Interface affects Lenovo products. CVSSv3 score of 9.8
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
