Siemens
Siemens Monthly Patches contain 7 new bulletins and 14 updated bulletins. Of the new bulletins, highest CVSSv3 score of 9.0
More info.
The ANSI C OPC UA SDK contained in SIMATIC products contains an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. A remote attacker can create a DoS by sending a specially crafted certificate. CVSSv3 score of 7.5
More info.
Siemens includes CodeMeter Runtime in some of their products, which has a vulnerability that could allow a remote attacker to achieve RCE. CVSSv3 score of 9.0
More info.
Schneider Electric Monthly Patches contains just 1 bulletin, CVSSv3 score of 7.8
More info.
SAP has published Monthly Patches with 13 new bulletins and 5 updated bulletins. Of the new bulletins, 2 are rated Hot News, 2 High, 7 Medium, and 2 Low. Highest CVSSv3 score of 9.9
More info.
Microsoft is aware of exploits for Edge in the wild, and is working on a patch.
More info.
Apple has published updates for older versions of iOS, iPadOS, and macOS that patches the recently discussed public exploits. Newer versions are already patched.
More info.
Zoom Desktop Client for Linux contains an Improper Input Validation vulnerability that allows a remote attacker to cause a DoS.
More info.
Red Hat has updated the kernel-rt and firmware. More info.
Oracle Linux has updated the kernel. More info.
