Monthly Patches are out for Microsoft and Adobe. New Alerts for Dahua, IBM, Dell, WithSecure, and Linux. This afternoon Palo Alto Networks Monthly Patches are expected.
Microsoft
Monthly Patches are out, with 86 patched vulnerabilities, 4 rated Critical, 1 actively exploited. Highest CVSSv3 score of 8.8
More info. And here. And here.
An RPC runtime RCE vulnerability with PoC has been patched. CVSSv3 score of 8.1
More info.
Windows Graphics component and Network File System both have RCE vulnerabilities that have been patched. Highest CVSSv3 score of 8.8
More info. And here.
Monthly Patches include updates for RoboHelp, Acrobat and Reader, Character and Animator, and Photoshop.
More info.
The security update for RoboHelp resolves a vulnerability rated Important, that could lead to arbitrary code execution in the context of current user. CVSSv3 score of 6.5
More info.
Dahua DHI-ASI7213X-T1 facial recognition access controller contains several vulnerabilities that could allow unauthorized access, upload of malicious files, or a DoS. Highest CVSSv3 score of 8.1
More info.
IBM Integration Bus is vulnerable to arbitrary code execution due to Node.js ejs module. CVSSv3 score of 9.8 No patch, just mitigation.
More info.
IBM App Connect Enterprise Certified Container DesignerAuthoring instances may be vulnerable to code injection due to Node.js module formidable. CVSSv3 score of 9.8
More info.
IBM i Modernization Engine for Lifecycle Integration is vulnerable to multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.
A security vulnerability has been identified in Postgresql shipped with IBM Tivoli Netcool Impact. Highest CVSSv3 score of 9.8
More info.
Dell has published 8 new bulletins, 5 rated Critical, 1 rated High, and 2 Medium.
More info.
A DoS vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning aeheur.dll component can crash the scanning engine. The exploit can be triggered remotely by an attacker.
More info.
SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Red Hat has updated the kernel and kernel-rt. More info.
Oracle Linux has updated the kernel. More info.
Comments