Monthly Patches are out for Qualcomm, Google Android, Google Pixel, and Samsung. New Alerts for Triangle Microworks, Cognex, Helmholz, and MB Connect Line.
Qualcomm
Qualcomm Monthly Patches are out, with 17 security vulnerabilities, 3 rated Critical, 13 rated High, and 1 rated Medium. Highest CVSSv3 score of 9.8
More info.
Android Monthly Patches are out, with 19 security vulnerabilities mostly rated High, plus third-party software updates. The most severe could allow for RCE.
More info. And here.
Pixel Monthly Patches are out, with 3 additional security vulnerabilities, including Android and Qualcomm patches. Two are rated Critical, 1 Moderate.
More info.
Samsung Monthly Patches are out with Android patches and at least 21 Samsung security vulnerabilities, 1 rated High and the rest Moderate.
More info.
Triangle Microworks TMW IEC 61850 Software Library and TMW IEC 60870-6 Software Library contain a vulnerability that could lead to a DoS. CVSSv3 score of 7.5
More info.
Cognex 3D-A1000 Dimensioning System contains several ulnerabilities, including: Missing Authentication for Critical Function, Improper Output Neutralization for Logs, and Client-side Enforcement of Server-side Security. Successful exploitation of these vulnerabilities could result in unauthorized password changes, escalation of privileges, falsifying of password logs, and bypassing of web access controls. Highest CVSSv3 score of 9.8
More info.
Multiple vulnerabilities have been found in myREX24 and myREX24.virtual. Highest CVSSv3 score of 9.8
Most of the issues are patched, some are waiting a future update.
More info. And here.
Multiple vulnerabilities exist in mymbCONNECT24 and mbCONNECT24 software. Highest CVSSv3 score of 9.8
More info. And here. And here. And here. And here.