New Alerts for Yokogawa, SDG Technologies, marKoni, GitLab, Moxa, IBM, and Dell.
Yokogawa
FAST/TOOLS and CI Server contain XSS and Empty Password in Configuration File vulnerabilities. Highest CVSSv4 score of 6.9
More info.
PnPSCADA has a Missing Authorization vulnerability. CVSSv4 score of 9.3
More info.
Markoni-D (Compact) FM Transmitters and Markoni-DH (Exciter+Amplifiers) FM Transmitters contain several vulnerabilities, including Command Injection, Use of Hard-coded Credentials, Use of Client-Side Authentication, and Improper Access Control. Highest CVSSv4 score of 9.3
More info.
GitLab has published a patch release that fixes 14 vulnerabilities, 1 rated Critical, 3 rated High, 9 rated Medium, and 1 rated Low. Highest CVSSv3 score of 9.6
More info.
Multiple web server vulnerabilities affect EDS-405A and EDS-408A products, that could lead to DoS, RCE, and privilege escalation. Highest CVSSv3 score of 8.2
More info.
PostgreSQL driver and toolkit for Go, known as pgx is used by IBM Instana Observability. CVSSv3 score of 9.8
More info.
IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities. Highest CVSSv3 score of 9.8
More info.
A vulnerability has been identified in Apache Velocity, which is used in IBM Engineering Lifecycle Management - IBM Jazz. CVSSv3 score of 9.8
More info.
There are vulnerabilities in IBM Java used by IBM Cognos Dashboards on Cloud Pak. Highest CVSSv3 score of 9.8
More info.
Multiple vulnerabilities were addressed in IBM Cloud Pak for AIOps. Highest CVSSv3 score of 9.8
More info.
Data Protection Advisor remediation is available for multiple vulnerabilities. Dell rates this Critical.
More info.
