New Alerts for Cisco, IBM, NetApp, and Dell.
Cisco
A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. CVSSv3 score of 6.1
More info.
IBM App Connect Enterprise Certified Container DesignerAuthoring operands may be vulnerable to arbitrary code execution. CVSSv3 score of 9.8
More info.
Multiple vulnerabilities were fixed in IBM Cloud Pak for Watson AIOps. Highest CVSSv3 score of 9.8
More info.
Power Hardware Management Console (HMC) contains several third-party software modules that require fixes for vulnerabilities. Highest CVSSv3 score of 9.8
More info. And here.
Dell has updated CloudLink Security for multiple third-party component vulnerabilities. Dell rates this Critical.
More info.
Multiple NetApp products implement the Service Location Protocol (SLP). SLP is susceptible to a vulnerability which allows an unauthenticated remote attacker to register arbitrary services, enabling them to cause a DoS with a significant amplification factor via spoofed UDP traffic. CVSSv3 score of 8.6
No patch yet.
More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page