VMware released a security advisory due to a vulnerability in Workstation, Fusion and ESXi that could be used to take control of affected systems.

Sources: VMware, CISA

Google released Chrome version 97.0.4692.71 for Windows, Mac and Linux due to vulnerabilities that could lead to an attacker taking control of affected systems.

Sources: Google Chrome, CISA

SonicOS SessionID HTTP response header has a stack-based buffer overflow, which could lead to code execution in the firewall.

Sources: SonicWall, NIST

Versions of IBM PowerVM Hypervisor are vulnerable to a violation of the isolation between peer VMs.

Sources: IBM, IBM Support, NIST

StarWind SAN & NAS build 1578 and StarWind Command Center Build 6864 Update Manager have a vulnerability that could lead to an escalation of privileges.

Sources: StarWind, NIST

Modem EMM has a vulnerability that could lead to remote information disclosure.

Sources: MediaTek, NIST

Versions of FortiOS contain a vulnerability that could lead to an attacker gaining arbitrary files.

Sources: FortiGuard Labs, NIST

Versions of Apache Geode are vulnerable to a log file redaction of sensitive information flaw.

Sources: Apache, NIST

Versions of Atlassian Jira Server and Data Center are vulnerable to cross-site scripting.

Sources: Atlassian, NIST

MyHuawei-App has a vulnerability that could compromise confidentiality.

Sources: HarmonyOS, NIST