Monthly Patches are out for Google Android and Samsung. New Alerts for Pilz, Wago, CODESYS, Dell, Ivanti, and Linux.
Google Android patches are out with 34 vulnerabilities along with Arm, Imagination Technologies, MediaTek, Unisoc, and Qualcomm patches. Of the Android patches, 4 are rated Critical and 30 are rated High.
More info.
Samsung Monthly Patches are out with Google Android and Samsung Semiconductor patches and at least 15 Samsung-specific SVEs.
More info.
The Builder and Viewer components of PASvisu are based on Electron which is affected by vulnerabilities in third-party software. The vulnerabilities may enable a remote attacker to gain full control over the system. CVSSv3 score of 8.8
More info.
Several Pilz products use libwebp, which may enable a remote attacker to gain full control over the system. CVSSv3 score of 8.8
More info.
The Library WagoAppRTU, part of the Wago Telecontrol Configurator, is prone to improper input validation. By sending specifically crafted MMS packets a remote attacker can trigger a DoS. CVSSv3 score of 7.5
More info.
Several CODESYS setups contain and install vulnerable versions of the WIBU CodeMeter Runtime. CVSSv3 score of 9.8
More info. And here.
Dell OS10 Networking Switches contain a DoS vulnerability when switches are configured with VLT and VRRP. A remote attacker can cause the network to be flooded leading to DoS. CVSSv3 score of 7.5
More info.
Dell PowerScale OneFS remediation is available for multiple security vulnerabilities. Highest listed CVSSv3 score of 8.8
More info.
Several vulnerabilities exists in Ivanti Connect Secure that allow a remote attacker to achieve DoS. Highest CVSSv3 score of 7.5
More info.
Amazon Linux 2 has updated the kernel. More info.
Security Wizardry Cyber Threat Intelligence - The Radar Page
Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page