New Alerts for VirusTotal YARA, SICK, Hitachi Energy, ClamAV, IBM, Mozilla, and Linux.
VirusTotal
A buffer overflow vulnerability in VirusTotal YARA allows a remote attacker to create a malicious ruleset that will execute arbtirary code. CVSSv3 score of 9.8
Don't use unknown rulesets.
More info.
Multiple vulnerabilities exist in the SICK LMS5xx that allow a remote attacker to impact availability, integrity and confidentiality of the LMS5xx. Highest CVSSv3 score of 9.8
One patch, 3 workarounds.
More info.
Lumada APM Edge product is affected by OpenSSL vulnerabilities.
More info.
Versions of ClamAV have been updated to patch an unRAR vulnerability. CVSSv3 score of 7.5
More info.
IBM Operations Dashboard contains multiple vulnerabilities in Go. Highest CVSSv3 score of 9.8
More info.
Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to code injection and privilege escalation due to multiple vulnerabilities in Go. Highest CVSSv3 score of 9.8
More info.
Mozilla has published security updates for Firefox and Firefox ESR, rated High.
More info.
Red Hat has updated the kernel, kernel-rt, and kpatch. More info.
Ubuntu has updated the kernel. More info.
Comments