Skip to main content

CND News and Blog

New Vulnerabilities Thursday 16 February


New Alerts for Cisco, Weintek, B&R Automation, ClamAV, GitLab, Western Digital, curl, and PHP.

Cisco 

Cisco has published 4 new bulletins. Highest CVSSv3 score of 7.5
More info.

A vulnerability in the DNS functionality of Cisco Nexus Dashboard Software could allow an unauthenticated, remote attacker to cause a DoS. CVSSv3 score of 7.5
More info.

Weintek 

Weintek EasyBuilder Pro contains a Path Traversal vulnerability that could allow an attacker to gain control of the user's machine or gain sensitive information. CVSSv3 score of 9.3
More info.

B&R Automation 

Several reflected XSS vulnerabilities exist in the System Diagnostics Manager (SDM) component of Automation Runtime. CVSSv3 score of 6.1
More info.

ClamAV 

Two vulnerabilities in ClamAV have been fixed in a critical patch release.
More info.

GitLab 

GitLab has released a Critical security update for Community and Enterprise Editions.
More info.

Western Digital 

My Cloud Home, My Cloud Home Duo and SanDisk ibi firmware has security updates that fix several RCE, information disclosure and DoS vulnerabilities.
More info.

curl 

curl has been updated to fix 3 new vulnerabilities, including DoS and downgrade to HTTP attacks.
More info.

PHP 

PHP 8.2.3 fixed two vulnerabilities, including some password hashes always return true, and a 1-byte array overrun.
More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Friday, 29 March 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/