New Alerts for Advantech, Dell, IBM, Omron, Motorola, NETGEAR, and Node.js.
Advantech
Advantech iView contains several vulnerabilities, including SQL Injection, Missing Authentication for Critical Function, Relative Path Traversal, and Command Injection. Successful exploitation of these vulnerabilities could allow an attacker to read or modify sensitive data, disclose information, or execute arbitrary code. Highest CVSSv3 score of 9.8
More info.
Dell VxRail remediation is available for multiple security vulnerabilities that may be exploited to compromise the affected system. Dell rates this Critical.
More info.
Mozilla has published security updates rated High for Thunderbird, Firefox, and Firefox ESR.
More info.
Omron SYSMAC CS/CJ/CP Series and NJ/NX Series contain "OT:ICEFALL" vulnerabilities. Highest CVSSv3 score of 6.5
More info.
Motorola Solutions ACE1000, MDLC, MOSCAD IP Gateway and ACE IP Gateway contain "OT:ICEFALL" vulnerabilities. Highest CVSSv3 score of 9.8
More info. And here. And here.
NETGEAR has released fixes for a sensitive information disclosure security vulnerability on RBK50, RBR50, and RBS50. CVSSv3 score of 7.5
More info.
NETGEAR has released fixes for a authentication bypass security vulnerability on RAX80, R6400v2, R6700v3, RAX75, and RAX200. CVSSv3 score of 7.3
More info.
The Node.js project will release new versions of the 14.x, 16.x, and 18.x releases lines on Tuesday, July 5th, 2022 in order to address 3 medium severity and 2 high severity issues.
More info.