New Alerts for Apple (Exploit), Tenable, Rockwell Automation, Meinberg, IBM, and Linux.

Apple Exploit

Apple has published updates for iOS, iPadOS, macOS, tvOS, watchOS, and Safari. One vulnerability is being exploited in older iOS versions. Highest CVSSv3 score of 9.8
More info.

Tenable 

Tenable has updated Nessus Network Monitor with updates for third-party software included in the product. Highest CVSSv3 score of 7.8
More info.

Rockwell Automation 

FactoryTalk View Site Edition is vulnerable to Improper Input Validation that could result in a DoS. CVSSv3 score of 7.5
More info.

Due to inadequate code logic, a remote attacker with knowledge of a valid user account could potentially obtain a local Windows OS user token through the FactoryTalk Services Platform web service and then use the token to log in into FactoryTalk Services Platform. This vulnerability can only be exploited if the authorized user did not previously log in. CVSSv3 score of 8.1
More info.

Meinberg 

The LANTIME firmware has been updated to fix vulnerabilities in third-party software.
More info.

IBM 

A Gevent vulnerability was addressed in IBM Cloud Pak for Watson AIOps CVSSv3 score of 9.8
More info.

Linux 

Ubuntu has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts