New Alerts for Samba,Cisco, Broadcom, D-Link, Zoom, Apache ActiveMQ, and Linux.
Note that there is a special note about the F5 Compromise, that fixed software was included in the recent Quarterly Patches.
More info.
Samba
Samba has published new bulletins, one of which is a vulnerability that allow a remote attacker to achieve remote code execution. Highest CVSSv3 score of 10.
More info.
Multiple vulnerabilities have been identified in Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 that could allow a remote attacker to cause a DoS or a XSS. CVSSv3 score of 7.5
More info.
Multiple products are affected by vulnerabilities in the HTTP MIME Decoder that could allow a remote attacker to cause the Snort 3 Detection Engine to leak possible sensitive information or to restart. CVSSv3 score of 6.5
More info.
Broadcom has published 7 new bulletins for Brocade Storage Networking products. One is rated High, 5 rated Medium, 1 rated Low.
More info.
D-Link has published a bulletin identifying several vulnerabilities in Nuclias connect. One is fixed the rest have fixes in development.
More info.
Authentication bypass in some Zoom Rooms Clients may allow a remote attacker to conduct a disclosure of information via network access. CVSSv3 score of 5.3
More info.
A Deserialization of Untrusted Data vulnerability exists in the Apache ActiveMQ NMS AMQP Client.
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
AlmaLinux has updated the kernel. More info.
