New Alerts for Apache Struts, Aethon, Dell, HP, and Linux.
Apache
Apache has released a security advisory to address a vulnerability in Struts. An attacker could exploit this vulnerability to execute remote code, and possibly take control of an affected system.
More info. And here.
Aethon TUG Home Base Server contains several vulnerabilities, including Missing Authorization, Channel Accessible by Non-endpoint, and Cross-site Scripting. Successful exploitation of these vulnerabilities could allow a remote attacker to add new users with administrative privileges and delete or modify existing users, cause a DoS, allow full control of robot functions, allow or expose sensitive information. Highest CVSSv3 score of 9.8
More info.
Updates for SUSE OS and other third-party software are available for Dell EMC Data Protection Central and PowerProtect DP Series Appliance (IDPA). Multiple security vulnerabilities can be exploited to compromise the affected system. Dell rates this Critical.
More info. And here.
HP has provided updated versions of Teradici PCoIP Clients, SDKs and Agents that remediates vulnerabilities found in libexpat and OpenSSL. Highest CVSSv3 score of 9.8
More info. And here.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
Comments