Skip to main content

CND News and Blog

Categories
Teams
Archives
Categories:   All Categories
Suggested keywords
x

New Vulnerabilities Wednesday 13 July

Vulnerabilities 1119 Hits 0 Comments

Monthly Patches are out for Microsoft and Adobe. New Alerts for Dahua, IBM, Dell, WithSecure, and Linux. This afternoon Palo Alto Networks Monthly Patches are expected.

Microsoft 

Monthly Patches are out, with 86 patched vulnerabilities, 4 rated Critical, 1 actively exploited. Highest CVSSv3 score of 8.8
More info. And here. And here.

An RPC runtime RCE vulnerability with PoC has been patched. CVSSv3 score of 8.1
More info.

Windows Graphics component and Network File System both have RCE vulnerabilities that have been patched. Highest CVSSv3 score of 8.8
More info. And here.

Adobe 

Monthly Patches include updates for RoboHelp, Acrobat and Reader, Character and Animator, and Photoshop.
More info.

The security update for RoboHelp resolves a vulnerability rated Important, that could lead to arbitrary code execution in the context of current user. CVSSv3 score of 6.5
More info.

Dahua 

Dahua DHI-ASI7213X-T1 facial recognition access controller contains several vulnerabilities that could allow unauthorized access, upload of malicious files, or a DoS. Highest CVSSv3 score of 8.1
More info.

IBM 

IBM Integration Bus is vulnerable to arbitrary code execution due to Node.js ejs module. CVSSv3 score of 9.8 No patch, just mitigation.
More info.

IBM App Connect Enterprise Certified Container DesignerAuthoring instances may be vulnerable to code injection due to Node.js module formidable. CVSSv3 score of 9.8
More info.

IBM i Modernization Engine for Lifecycle Integration is vulnerable to multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.

A security vulnerability has been identified in Postgresql shipped with IBM Tivoli Netcool Impact. Highest CVSSv3 score of 9.8
More info.

Dell 

Dell has published 8 new bulletins, 5 rated Critical, 1 rated High, and 2 Medium.
More info.

WithSecure 

A DoS vulnerability was discovered in F-Secure Atlant and in certain WithSecure products whereby the scanning aeheur.dll component can crash the scanning engine. The exploit can be triggered remotely by an attacker.
More info.

Linux 

SUSE has updated the kernel. More info.
OpenSUSE has updated the kernel. More info.
Red Hat has updated the kernel and kernel-rt. More info.
Oracle Linux has updated the kernel. More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page


https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.
https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts
Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

About the author

michele654

michele654

Subscribe to updates from author Unsubscribe to updates from author michele654
Author's recent posts
More posts from author
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, 18 April 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/