New Alerts for Cisco, mySCADA, Google Chrome, SonicWall, M-Files, ClamAV, and Linux.
Cisco
Cisco has published 3 new bulletins, 1 rated Critical, 1 High, and 1 Medium. Highest CVSSv3 score of 9.9
More info.
A vulnerability in the SIP processing subsystem of BroadWorks could allow a remote attacker to halt the processing of incoming SIP requests, resulting in a DoS. CVSSv3 score of 7.5
More info.
A vulnerability in the OLE2 decryption routine of ClamAV could allow a remote attacker to cause a DoS. CVSSv3 score of 5.3
More info.
myPRO contains an OS Command Injection vulnerability that allows a remote attacker to execute arbitrary commands or disclose sensitive information. Highest CVSSv4 score of 9.3
More info.
Chrome for Desktop has been updated to fix 3 security vulnerabilities.
More info.
A pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 AMC and CMC, which could enable a remote attacker to execute arbitrary OS commands. CVSSv3 score of 9.8
More info.
Three bulletins have been published identifying vulnerabilities in M-Files Server, the worst of which allows a remote attacker to consume computing resources. Highest CVSSv4 score of 6.3
More info.
A possible buffer overflow read bug in the OLE2 file parser could cause a DoS. CVSSv3 score of 5.3
More info.
Oracle Linux has updated the kernel. More info.
Red Hat has updated rsync. More info.