Quarterly Patches are out for F5. Monthly Patches are out for Fortinet. New Alerts for VMware, Google Chrome, Belden, Dell, and Linux.
Splunk Quarterly Patches have been pushed off 2 weeks.
VMware
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate. CVSSv3 score of 9.8.
More info. And here.
Google has updated Chrome for Desktop with 27 security fixes.
More info.
Microsoft is aware and working on Edge. More info.
EagleSDV crashes on session establishment using TLS1.0 or TLS1.1, resulting in DoS.
More info.
Dell Data Computing Appliance (DCA) contains remediation for multiple security vulnerabilities that may be exploited by remote attackers to compromise the affected system. Dell rates this Critical.
More info.
Dell VNX2 Operating Environment for File contains remediation for multiple security vulnerabilities that may be exploited by remote attackers to compromise the affected system. Dell rates this Critical. Highest CVSSv3 score of 8.6
More info.
F5 Quarterly Patches are out, with 12 patches rated High, 8 rated Medium, 1 Low, and one Security Exposure bulletin. Highest CVSSv3 score of 8.7
More info.
Fortinet Monthly Patches are out, with 3 bulletins. Highest CVSSv3 score of 7.4
More info.
SUSE has updated the kernel. More info.
Red Hat has updated the kernel. More info.
CentOS has updated the kernel. More info.
Oracle Linux has updated the kernel. More info.
Comments