New Alerts for TIBCO, Xerox, Baxter, Dell, IBM, Campbell Scientific, and Linux.
TIBCO
Managed File Transfer Platform Server for Unix and z/Linux contain a vulnerability that allows Platform Server clients to bypass user-id/password authentication and transfer files as root or execute commands as root. CVSSv3 score of 9.8
More info.
Xerox has updated the FreeFlow Print Server to fix vulnerabilities in third-party software. Highest CVSSv3 score of 9.8
More info.
Welch Allyn Configuration Tool contains an Insufficiently Protected Credentials vulnerability. Successful exploitation could lead to the unintended exposure of credentials to unauthorized users. CVSSv4 score of 9.4
More info.
Dell Live Optics Collector remediation is available for a ZLib vulnerability. Dell rates this Critical.
More info.
Multiple vulnerabilities affect IBM Db2 on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data. Highest CVSSv3 score of 10
More info.
CSI Web Server and RTMC Pro contain Path Traversal and Weak Encoding for Password vulnerabilities that could allow a remote attacker to download files and decode stored passwords. Highest CVSSv4 score of 6.9
More info.
SUSE has updated the kernel. More info.
Ubuntu has updated the kernel and microcode. More info.
