Monthly Patches are out for Google Pixel. New Alerts for Google Chrome, Siemens, F5, Mozilla, HPE, HaloITSM, and Linux.
Pixel Monthly Patches include 1 patched vulnerability, rated High, plus patches from Google Android and Qualcomm.
More info.
Google has updated Chrome for Desktop to fix 5 security vulnerabilities, 1 rated Critical and the rest High.
More info.
Omnivise T3000 contains several vulnerabilities, one of which exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application. Highest CVSSv4 score of 8.7
More info.
Vulnerabilities in Apache HTTPD affect BIG-IP, F5OS-A, F5OS-C, and Traffix SDC. Highest CVSSv3 score of 7.5
No fixes yet.
More info.
Mozilla has published security updates for Firefox, Firefox ESR, and thunderbird, all rated High.
More info.
HPE Athonet contains an unauthenticated RCE vulnerability introduced by OpenSSH's RegreSSHion. CVSSv3 score of 8.1.
More info.
HPE Aruba Networking Access Points contain multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.
HaloITSM could allow a remote attacker to bypass security restrictions, caused by password reset poisoning vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to gain a password reset token to set a new password for the victim's account. CVSSv3 score of 8.3
More info. And here.
SUSE has updated the kernel and kernel firmware. More info.
Mageia has updated the kernel. More info.