New Alerts for ABB, HPE, Arista, Tenable, Dell, IBM, and Linux.
ABB
A vulnerability exists in the Modbus TCP server functionality that allows a remote attacker to access fragments of Modbus telegrams that have been sent earlier by that PLC. CVSSv4 score of 6.9
More info.
Security vulnerabilities have been identified in the HP-UX Secure Shell daemon. These vulnerabilities could be exploited remotely to execute code, bypass security restrictions, execute arbitrary code and compromise system integrity. Highest CVSSv3 score of 6.8
More info.
On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors. CVSSv3 score of 7.5
More info.
Tenable Identity Exposure has been updated to fix vulnerabilities in third-party software. Highest CVSSv3 score of 7.5
More info.
Dell has published Critical bulletins for Data Protection Central and Networking SmartFabric Storage Software.
More info.
IBM has published Critical bulletins for Cloud Pak System Software, Db2 products, Tivoli Monitoring, and QRadar SIEM.
More info.
AlmaLinux has updated the kernel. More info.
