New Alerts for StrangeBee, Google Chrome (Exploit), and OpenSSL.

                 

Not sure what happened to the Mobile patch day, maybe later this afternoon or next week.

StrangeBee 

A critical vulnerability has been identified in TheHive API endpoint. An attacker exploiting the vulnerability will be able to get all the details of current activities in TheHive (creation, modification, deletion of any object). This endpoint is accessible without authentication.
More info. And here.

Google Exploit

Google has updated Chrome for Desktop to fix 4 security vulnerabilities, at least 3 rated High. One is being actively exploited.
More info.

Google has updated Chrome for Android to fix 3 security vulnerabilities, at least 2 rated High. One is being actively exploited.
More info.

OpenSSL

OpenSSL has a serious bug in the RSA implementation, causing memory corruption during the computation. As a consequence of the memory corruption an attacker may be able to trigger a remote code execution on the machine performing the computation. OpenSSL rates this High.
More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts