New Alerts for Cisco, SonicWall, Apache HTTP Server, Dell, IBM, Mitel, and Linux.
Cisco
Cisco has published 9 new bulletins, 2 rated Critical, 3 rated High, and 4 rated Medium. Highest CVSSv3 score of 10.
More info.
A vulnerability in the authentication system of Cisco Smart Software Manager On-Prem could allow a remote attacker to change the password of any user, including administrative users. CVSSv3 score of 10.
More info.
A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow a remote attacker to overwrite arbitrary files on the underlying operating system. CVSSv3 score of 9.8
More info.
Heap-based buffer overflow vulnerability in the SonicOS IPSec allows an unauthenticated remote attacker to cause DoS. CVSSv3 score of 7.5
More info.
SonicWall GMS and Analytics products are affected by critical, high, and medium severity vulnerabilities. Highest CVSSv3 score of 9.8
More info.
Apache HTTP Server has been updated to fix 2 vulnerabilities rated Important. CVSSv3 score of 5.9
More info.
Dell ECS remediation is available for multiple security vulnerabilities. Dell rates this Critical.
More info.
IBM Security Guardium is affected by multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.
A command injection vulnerability in the Platform Webservice component of Unify OpenScape 4000 and Unify OpenScape 4000 Manager could allow a remote attacker to execute arbitrary commands within the context of the system. This is rated Critical.
More info.
A command injection vulnerability in the Unify OpenScape 4000 Assistant and Unify OpenScape 4000 Manager, could allow a remote attacker to conduct a command injection attack. This is rated Critical.
More info.
Ubuntu has updated the kernel. More info.
