New Alerts for Barracuda (Exploit), Moxa, IBM, NetApp, Apache OFBiz, and Linux.
Barracuda Exploit
Another vulnerability in third party software has been identified in the ESG appliance that could allow Arbitrary code execution. CVSSv3 score of 9.8
More info. And here.
Web vulnerabilities have been identified in ioLogik E1200 Series firmware. Highest CVSSv3 score of 8.8
More info.
IBM Maximo Application Suite - IoT uses Quartz Job Scheduler which could allow a remote attacker to execute arbitrary code on the system. CVSSv3 score of 9.8
More info. And here.
IBM Security SOAR uses an older version of Apache ActiveMQ that may be identified and exploited. CVSSv3 score of 9.4
More info.
NetApp Converged Systems Advisor Agent incorporates AsyncSSH. AsyncSSH is susceptible to vulnerabilities which could lead to disclosure of sensitive information or addition or modification of data. Highest CVSSv3 score of 6.8
No patch yet.
More info.
OFBiz contains a vulnerability that allows a remote attacker to bypass authentication and conduct SSRF. Apache rates this Critical.
More info.
Oracle Linux has updated the kernel. More info.
Mageia has updated the kernel. More info.
Comments