Skip to main content

CND News and Blog

New Vulnerabilities Tuesday 19 November


New Alerts for Palo Alto Networks (fix for Exploit), Oracle, Mitsubishi Electric, Synology, Westermo, and Linux.

Palo Alto Networks 

Palo Alto Networks has patched a previously reported and exploited unauthenticated RCE vulnerability. CVSSv4 score of 9.3
More info.

Oracle 

Agile Product Lifecycle Management contains a vulnerability that allows a remote attacker to achieve file disclosure. CVSSv3 score of 7.5
More info.

Mitsubishi Electric 

A DoS vulnerability exists in MELSEC iQ-F Ethernet Module and EtherNet/IP Module that allows a remote attacker to cause a DoS by sending specially crafted SLMP packets. CVSSv3 score of 7.5
More info.

Synology 

Multipe vulnerabilities allow remote attackers to execute arbitrary code or execute arbitrary commands on a susceptible version of Synology Camera BC500 Firmware, Synology Camera CC400W Firmware and Synology Camera TC500 Firmware. Synology rates this Critical.
More info.

Westermo 

WeOS is vulnerable due to an issue in the software component zlib. CVSSv3 score of 7.5
The vulnerability is from 2018.
More info.

Linux 

SUSE has updated the kernel. More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Sunday, 08 December 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/