New Alerts for Diffie-Hellman, Splunk, Hitachi, F5, IBM, and Juniper Networks.
Diffie-Hellman
D(HE)at Attack allows a remote attacker to overheat the CPU with computations, resulting in a DoS.
More info.
Splunk has updated the plug-in for AWS to fix a DoS.
More info.
Cosminexus Component Container has been updated to fix an Apache Tomcat DoS. CVSSv3 score of 7.5
More info.
F5 has updated Traffix SDC to fix a vulnerability in Jinja that allows a remote attacker to bypass auto-escaping and potentially circumvent attribute validation checks. CVSSv3 score of 5.4
More info.
Multiple vulnerabilities affect IBM Db2 on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data. Highest CVSSv3 score of 9.8
More info.
IBM Cloud Pak for Data is vulnerable to a variety of issues due to 3rd party software. Highest CVSSv3 score of 9.8
More info.
Instana Observability is vulnerable to SQL injection due to PostgreSQL driver and toolkit for Go, known as pgx. CVSSv3 score of 9.8
More info.
Juniper has updated several products for BlastRADIUS. CVSSv4 score of 7.1
More info.
Comments