CND News and Blog

Apparently it was a quiet weekend, I found no new vulnerabilities to report this morning.  Enjoy the great start to the week! Security Wizardry Cyber Threat Intelligence - The Radar Page https://radar.securitywizardry.com/ Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page A mobile version of our Security Wizardry Radar Page, ...

New Alerts for VMware and INEA. VMware  VMware Aria Operations for Logs contains several vulnerabilities, the worst of which allows a remote attacker to execute arbitrary code as root. Highest CVSSv3 score of 9.8More info. INEA  ME RTU contains an OS Command Injection vulnerability that could allow a remote attacker RCE. CVSSv3 score of 1...

New Alerts for Cisco, PaperCut (Exploit), TIBCO, Microsoft Edge (Exploit), NetApp, and HCL Software.  Cisco  Cisco has published 6 new bulletins and 2 updated bulletins. Of the new bulletins, 2 are rated Critical, 2 rated High, and 2 rated Medium. Highest CVSSv3 score of 9.9More info. A vulnerability in the external authentication mechani...

New Alerts for F5, vm2, Google Chrome (Exploit), and Linux. F5  BIG-IP Next SPK and F5OS contain a vulnerability in urllib3 that allows a remote attacker to inject additional HTTP headers via the HTTP method and perform a smuggling attack and/or allow a client to bypass HTTP headers with security purpose. Highest CVSSv3 score of 6.5.More info....

Oracle Quarterly Patches are out this afternoon.  New Alerts for Philips, IBM, Pale Moon, and Linux.  Philips Philips has identified several products vulnerable to the Windows CLFS issue that is being actively exploited. CVSSv3 score of 7.8More info. OracleOracle quarterly patches are out with 414 new security patches, 284 are remotely ex...

New Alerts for HP, Omron (Exploit), Google Chrome (Exploit), and Microsoft Edge (Exploit.)  Tomorrow is Oracle Quarterly Patches, the pre-release is out, see the link below. HP  HP Device Manager could potentially allow command injection and/or elevation of privileges. Highest CVSSv3 score of 9.8More info. Omron Exploit FINS is a protocol...

New Alerts for Mitsubishi Electric India, B&R, Dell, NetApp, and Linux. Mitsubishi Electric India  Mitsubishi Electric India Ethernet communication Extension unit GC-ENET-COM contains a vulnerability that leads to a communication error and may result in a DoS. CVSSv3 score of 7.5 More info. B&R  VC4 Visualization contains several ...

Monthly Patches for Juniper Networks are out. New Alerts for FANUC, NTP, IBM, Dell, Wireshark, and Linux.  FANUC  FANUC ROBOGUIDE-HandlingPRO contains a Path Traversal vulnerability that could allow a remote attacker to read and/or overwrite files on the system running the affected software. CVSSv3 score of 6.8More info. Juniper Networks ...

Monthly Patches are out for Microsoft, Adobe, and Fortinet. New Alerts for Mozilla, SICK, Hikvision, and Linux. Microsoft Exploit Microsoft Monthly Patches are out with fixes for 114 vulnerabilities, 7 of which are Critical and 1 EoP vulnerability being exploited. Highest CVSSv3 score of 9.8More info. And here. And here. Adobe  In their Monthl...

Monthly Patches are out for Siemens, Schneider Electric, SAP, and Google Pixel. New Alerts for Apple (Exploit), TRENDnet, and Linux.      This afternoon Microsoft and Adobe Monthly Patches should be out. Tomorrow there might be Palo Alto Networks patches. Siemens  Siemens Monthly Patches are out with 13 new bulletins and 32 upda...

New Alert for Apple (Exploit). Apple has published updates for Safari, iOS, iPadOS, and macOS. These contain actively exploited vulnerabilities. Security Wizardry Cyber Threat Intelligence - The Radar Page https://radar.securitywizardry.com/ Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page A mobile version of our Security Wizardr...

New Alerts for Trellix, ICL (Exploit), Microsoft, IBM, and Open vSwitch. Trellix  ePolicy Orchestrator (ePO) contains a vulnerability in APR-util that allows an attacker to write beyond bounds of a buffer. CVSSv3 score of 9.8More info. ICL Exploit On ICL ScadaFlex II SCADA Controller SC-1 and SC-2 devices, remote attackers can overwrite, delet...

Monthly Patches are out for MediaTek. New Alerts for Cisco, NetApp, WithSecure, Mitel, and Linux.  Cisco  Cisco has published 13 new bulletins. 3 rated High, 9 rated Medium, 1 Informational. Highest CVSSv3 score of 8.8More info.A vulnerability in the Vector Packet Processor (VPP) of Cisco Packet Data Network Gateway (PGW) could allow a re...

New Alerts for Sophos, Google Chrome, Dell, and Nexx. Sophos  Sophos Web Appliance has been updated to fix 3 vulnerabilities, one of them rated Critical and allowing a remote attacker to obtain RCE. Highest CVSSv3 score of 9.8More info. Google  Google has published an update for Chrome for Desktop with 16 security fixes included. More inf...

Monthly Patches are out for Google Android, Google Automotive, and Samsung Mobile. New Alerts for Samsung Semiconductor, HP, WithSecure, Ivanti Apache, and Linux. Google  Android Monthly Patches are out, with 30 patched vulnerabilities with 2 rated Critical, plus Arm, Imagination Technologies, MediaTek, Unisoc, and Qualcomm updates.More info.A...

Monthly Patches are out for Qualcomm. New Alerts for ABB, IBM, and Linux. ABB A vulnerability regarding the exposure of sensitive information over the Flow-X web API has been reported. A remote attacker could exploit this vulnerability to obtain an overview of the usernames which can login into the device and device information. CVSSv3 score of 5.3...

New Alerts for Contec, Apple, IBM, NetApp, and Linux. Contec  Contec has identified several vulnerabilities in its CONPROSYS HMI System (CHS) Web HMI/SCADA software. These vulnerabilities could be exploited by a remote attacker to steal information. CVSSv3 score of 7.5More info. Apple  Apple has published an update for Xcode that fixes tw...

New Alerts for Samba, QNAP, Veritas, 3CX (Exploit), and Linux. Samba  Samba has published 3 new bulletins, highest CVSSv3 score of 7.7More info.Samba will send password information over unencrypted sessions. CVSSv3 score of 5.9More info. QNAP  QNAP is updating their products for the Samba vulnerabilities.More info. Veritas  Veritas h...

New Alerts for PowerDNS, Mozilla Thunderbird, Tenable, and Linux. PowerDNS  When the recursor detects and deters a spoofing attempt or receives certain malformed DNS packets, it throttles the server that was the target of the impersonation attempt. Unfortunately this mechanism can be used by an attacker with the ability to send queries to the ...

New Alerts for Apple (Exploit), APsystems, Hitachi Energy, Dell, and Linux. Apple Exploit Apple has published updates for Studio Display firmware, Safari, iOS, iPadOS, watchOS, tvOS, and macOS. Three vulnerabilities are rated Critical, with one in WebKit being exploited.More info. APsystems  There is a security vulnerability in Altenergy Power...