Monthly Patches are out for Palo Alto Networks. New Alerts for Pgpool-II, Google Chrome (Exploit), Hitachi, Progress, Sonicwall, and Linux.
Palo Alto Networks
Palo Alto Monthly Patches includes 11 bulletins. Highest CVSSv4 score of 8.2
More info.
An authentication bypass vulnerability exists in the client authentication mechanism of Pgpool-II. CVSSv4 score of 9.3
More info.
Google has updated Chrome for Desktop to fix 4 security vulnerabilities. Exploits have been seen.
More info.
Microsoft is aware. More info.
Hitachi has published 7 new bulletins for JP1/IT Desktop Management, Infrastructure Analytics Advisor, Ops Center Analyzer, Ops Center Common Services, Ops Center Viewpoint, and Cosminexus
More info.
In Progress Telerik UI for AJAX, a remote attacker can send a specially crafted request that results in a DoS. This affects Sitefinity as well.
More info. And here.
A SSRF vulnerability has been identified in the SMA1000 Appliance Work Place interface, allowing a remote attacker to cause the appliance to make requests to unintended location. CVSSv3 score of 7.2
More info. And here.
Red Hat has updated the kernel and kernel-rt. More info.
