New Alerts for HPE, VMware, and Cacti.

HPE 

HPE OneView contains a Use After Free vulnerability in Expat. CVSSv3 score of 9.8
More info.

VMware 

vRealize Operations (vROps) contains a CSRF bypass vulnerability. CVSSv3 score of 6.5
More info.

Exploit code is out for the Jan 24 Critical bulletin.
More info.

Cacti 

A command injection vulnerability allows a remote attacker to execute arbitrary code on a server running Cacti, if a specific data source was selected for any monitored device. CVSSv3 score of 9.8
More info. And here.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts