Skip to main content

CND News and Blog

Categories
Teams
Archives
Categories:   All Categories
Suggested keywords
x

New Vulnerabilities Tuesday 12 March

Vulnerabilities 141 Hits 0 Comments

Monthly Patches are out for Siemens, Schneider Electric, and SAP. New Alerts for Phoenix Contact, Synology, and Linux. Monthly Patches for Microsoft and Adobe are expected this afternoon.

Siemens 

Siemens Monthly Patches are out, with 11 new bulletins and 11 updated bulletins. Of the new bulletins, highest CVSSv3 score of 10
More info.

RUGGEDCOM APE 1808 contains Fortigate NGFW, which has been updated to fix several vulnerabilities. Highest CVSSv3 score of 9.8
More info. And here.

Several products used in Sinteso EN and Cerberus PRO EN Fire Protection Systems contain buffer overflow vulnerabilities in the network communication stack. Highest CVSSv3 score of 10.
More info.

SENTRON 3KC ATC6 Expansion Module Ethernet exposes an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. CVSSv3 score of 7.5
More info.

SIMATIC RF160B contain multiple vulnerabilities of different types that could allow an attacker to execute arbitrary code. Highest CVSSv3 score of 9.8
More info.

SINEMA Remote Connect Server before V3.2 is affected by multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.

Schneider Electric 

Schneider Electric Monthly Patches are out, with 2 new bulletins and 3 updated bulletins. Of the new bulletins, highest CVSSv3 score of 9.8
More info.

Multiple vulnerabilities exist in Easergy T200 products. Highest CVSSv3 score of 9.8
More info.

SAP 

SAP Security Patch Day includes 10 new Security Notes and 2 updated Security Notes. There are updates for NetWeaver, NetWeaver AS Java, NetWeaver AS ABAP, NetWeaver Process Integration, Build Apps, HANA XS Classic and Advanced, BusinessObjects Business Intelligence Platform, Fiori Front End Server and ABAP Platform. Of the new Notes, Highest CVSSv3 score of 9.4. One of the updated notes has a CVSSv3 score of 10.
More info.

Phoenix Contact 

Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. Highest CVSSv3 score of 9.8
More info. And here.

Synology 

Multiple vulnerabilities exist in Synology Router Manage,r that allows a remote attacker to inject arbitrary web script or HTML, among other authenticated vulnerabilities.
More info.

Linux 

Oracle Linux has updated the kernel. More info.
Ubuntu has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts
Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

About the author

michele654

michele654

Subscribe to updates from author Unsubscribe to updates from author michele654
Author's recent posts
More posts from author
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Monday, 29 April 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/