New Alerts for Cisco, BD, IBM, NetApp, GitLab, PHP, Veritas, Franklin Fueling, and Linux.
Cisco
Cisco has published 15 new bulletins, 8 rated High and 7 rated Medium. Updates for IOS and IOS XE Software, Catalyst SD-WAN Routers, Catalyst Center, Catalyst 9000, and SD-WAN vEdge. Highest CVSSv3 score of 8.6
More info.
BD has published third-party patches for Kiestra InoqulA+.
More info.
IBM has published updates for Cloud Pak and watsonx.data. Highest CVSSv3 score of 9.8
More info.
NetApp has published bulletins for third-party software included in their products. Highest CVSSv3 score of 9.8
Three have patches.
More info.
GitLab has been updated to fix an authentication bypass vulnerability. CVSSv3 score of 10
More info.
PHP has been updated to fix 4 security bugs and other bugs.
More info.
A vulnerability was discovered in the Veritas Data Insight that allows a remote attacker to inject an arbitrary web script into an HTTP request which could reflect back to an authenticated user without sanitization if executed by that user. CVSSv3 score of 6.1
More info.
TS-550 EVO Automatic Tank Gauge contains a path traversal vulnerability that allows a remote attacker to gain administrative access over the affected device. CVSSv4 score of 8.7
More info. And here.
Red Hat has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
AlmaLinux has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page