New Alerts for Apple (Exploit), Cisco, VMware, Juniper, NetApp, and Linux.
Apple Exploit
Apple has published security patches for Safari, iOS, iPadOS, macOS, and watchOS. Three vulnerabilities are actively exploited, 2 of those allow code execution. Highest CVSSv3 score of 9.8
More info. And here.
Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance, could allow a remote attacker to conduct a XSS attack against a user of the interface. CVSSv3 score of 6.1
More info.
Multiple memory corruption vulnerabilities in VMware vCenter Server have been patched. Highest CVSSv3 score of 8.1
More info.
NetApp has published 8 new bulletins identifying vulnerabilities in third-party software included in their products. Highest CVSSv3 score of 9.8
Only 3 have patches.
More info.
Juniper has published an Out-of-cycle bulletin for an improper input validation vulnerability in rpd of Junos OS and Junos OS Evolved. CVSSv3 score of 7.5
More info.
SUSE has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
Comments