Skip to main content

CND News and Blog

New Vulnerabilities Wednesday 29 January


New Alerts for Google Chrome, Rockwell Automation, Ruckus Networks, IBM, Moxa, and Linux.

Google 

Google has updated Chrome for Desktop to fix 2 security vulnerabilties.
More info.

Microsoft is aware. More info.

Rockwell Automation 

Rockwell Automation has updated FactoryTalk View to fix several vulnerabilities, including an RCE. Highest CVSSv4 score of 9.3
More info.

A Credential Exposure vulnerability exists in PowerFlex 755. The vulnerability is due to using HTTP resulting in credentials being sent in clear text. CVSSv4 score of 8.7
More info.

A DoS vulnerability was found in KEPServer. CVSSv3 score of 7.5
More info.

Ruckus Networks

Unleashed APs and ZoneDirector contain a number of critical vulnerabilities. Collectively, these vulnerabilities allow a remote attacker to gain shell access to the device.. Highest CVSSv4 score of 9.3
More info.

IBM 

IBM has published Critical bulletins for Tivoli Network Manager and Storage Copy Data Management.
More info.

Moxa 

Multiple PT switches are affected by an out-of-bounds write vulnerability caused by insufficient input validation that could result in a denial-of-service attack. CVSSv4 score of 8.7
More info.

Linux 

Ubuntu has updated the kernel. More info.
Red Hat has updated rsync. More info.



Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

Report Print
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

By accepting you will be accessing a service provided by a third-party external to https://www.cndltd.com/