New Alerts for VMware, Google Chrome, GE Gas Power, IBM, Aruba, Juniper Networks, and Linux.
VMware
Aria Operations for Networks contains two vulnerabilities, the worst of which could allow a remote attacker to bypass SSH authentication to gain access to the Aria Operations for Networks CLI. Highest CVSSv3 score of 9.8
More info.
Google has updated Chrome for Desktop to fix 1 security vulnerability rated High.
More info.
Microsoft is aware. More info.
GE Gas Power has identified that a setting in DCx Hardening Policy was applied incorrectly, preventing the built-in Administrator account from beng properly disabled.
Update the DCx Hardening Policy.
More info.
IBM Maximo Application Suite uses protobuf.js package which is vulnerable to RCE. CVSSv3 score of 9.8
More info.
IBM i Modernization Engine for Lifecycle Integration is vulnerable to multiple vulnerabilities. Highest CVSSv3 score of 9.8
More info.
HPE Aruba Networking has released updates for wired switching products running ArubaOS-Switch that address multiple security vulnerabilities. Highest CVSSv3 score of 8.3
More info.
An improper input validation vulnerability in the Routing Protocol Daemon of Junos OS and Junos OS Evolved allows a remote attacker to cause a DoS. CVSSv3 score of 7.5
More info.
Ubuntu has updated the microcode. More info.
Comments