Microsoft Internet Explorer contains a memory corruption vulnerability that can allow remote attackers to execute code or cause a denial of service via a crafted website.

Sources: CISA, NIST

Samba contains a remote code execution vulnerability that can allow a malicious client to upload a shared library to a writable share and then cause the server to load and execute it.

Sources: CISA, NIST

Forta Cobalt Strike contains a user interface remote code execution vulnerability that can allow a threat actor to execute code remotely.

Sources: CISA, NIST

Apple iOS, iPadOS and macOS contain an out-of-bounds write vulnerability that may allow a malicious application to execute code with kernel privileges.

Sources: CISA, NIST

Arm Mali Graphics Processing Unit contains a kernel driver use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.

Sources: CISA, NIST

Linux Kernel contains a use-after-free vulnerability that allows for privilege escalation to gain ring access from the system user.

Sources: CISA, NIST

Hitachi Energy IEC 61850 MMS-Server contains an improper resource shutdown or release vulnerability that can cause products using the IEC 61850 MMS-server communication stack to stop accepting new MMS-client connections.

Sources: CISA, Hitachi Energy