Skip to main content

CND News and Blog

New Vulnerabilities Wednesday 21 December


New Alerts for D-Link, Dell, NetApp, Zyxel, curl, Open vSwitch, and Linux.

D-Link 

D-Link DIR-824/EE hardware contains several unauthenticated OS command injection vulnerabilities. Highest CVSSv3 score of 9.8
More info.

Dell 

Dell SRM and Dell Storage Monitoring and Reporting have a security update for multiple third-party xomponent vulnerabilities. Dell rates this Critical.
More info.

Dell Streaming Data Platform remediation is available for multiple security vulnerabilities that may be exploited by malicious users to compromise the affected system. Dell rates this Critical.
More info.

NetApp 

OnCommand Insight is susceptible to an authentication bypass vulnerability in the Data Warehouse component. CVSSv3 score of 8.6
More info.

Zyxel 

A DNS misconfiguration in Zyxel's NBG7510 could allow an unauthenticated attacker to perform DNS-related attacks, such as DNS tunneling or DNS amplification attacks, by using the open DNS resolver when the device is switched to the AP mode. CVSSv3 score of 5.3
More info.

curl 

curl's HSTS check could be bypassed to trick it to keep using HTTP.
More info.

Open vSwitch 

Open vSwitch is subject to a denial of service, and possibly a remote code execution exploit when LLDP processing is enabled on an interface.
More info.

Linux 

SUSE has updated the kernel. More info.
OpenSUSE as updated the kernel. More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, 28 March 2024

Captcha Image

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/