New Alerts for Festo, Zyxel, Mozilla Thunderbird, and Linux.
Festo
Festo control block CPX-CEC-C1 and CPX-CMXX allow unauthenticated, remote access to critical webpage functions which may cause a DoS. CVSSv3 score of 7.5
No updates, replace the product.
More info.
Zyxel has released patches for GS1900 series switches affected by an insufficient entropy vulnerability. This vulnerability could allow a remote attacker to retrieve a private key by factoring the RSA modulus N in the certificate of the web administration interface.CVSSv3 score of 5.9
More info.
Two vulnerabilities have been fixed in Thunderbird, one rated High and the other Moderate. Sensitive information can be leaked when responding to an HTML email that contains a META refresh tag.
More info.
SUSE has updated SUSE Manager Server More info.
Comments