Het CSIRT-DSP maakt op wekelijkse basis een selectie van kwetsbaarheden, waarbij het CSIRT-DSP de inschatting heeft gemaakt dat deze relevant zijn voor digitale dienstverleners.
Het betreft een selectie van 'Medium' en 'High' kwetsbaarheden. Voor de inschatting hiervan wordt er gebruik gemaakt van de CVSS 3.1 base scores indien deze beschikbaar zijn. Indien deze niet beschikbaar zijn, zal dit worden aangegeven met 'n/a'.
Critical & High
Cisco Smart Software Manager On-Prem
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAd… (10.0)
Docker Engine (AuthZ plugin)
https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq (10.0)
Cisco Secure Email Gateway
https://nvd.nist.gov/vuln/detail/CVE-2024-20401 (9.8)
Ivanti Endpoint Manager for Mobile (EPMM)
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-M… (9.8-5.3)
SolarWinds Access Rights Manager
https://documentation.solarwinds.com/en/success_center/arm/content/rele… (9.6-7.6)
Cisco AsyncOS for Secure Web Appliance
https://nvd.nist.gov/vuln/detail/CVE-2024-20435 (8.8)
Ivanti Endpoint Manager
https://forums.ivanti.com/s/article/Security-Advisory-EPM-July-2024-for… (8.4)
HashiCorp Nomad / Nomad Enterprise
https://nvd.nist.gov/vuln/detail/CVE-2024-6717 (7.7)
Argo CD
https://nvd.nist.gov/vuln/detail/CVE-2024-40634 (7.5)
BIND 9
https://nvd.nist.gov/vuln/detail/CVE-2024-0760 (7.5)
https://nvd.nist.gov/vuln/detail/CVE-2024-1737 (7.5)
https://nvd.nist.gov/vuln/detail/CVE-2024-1975 (7.5)
https://nvd.nist.gov/vuln/detail/CVE-2024-4076 (7.5)
Cisco Intelligent Node (iNode) Software
https://nvd.nist.gov/vuln/detail/CVE-2024-20323 (7.5)
SonicWall SonicOS IPSec VPN
https://nvd.nist.gov/vuln/detail/CVE-2024-40764 (7.5)
SonicWall SMA100 NetExtender Windows Client
https://nvd.nist.gov/vuln/detail/CVE-2024-29014 (7.1)
Apache CloudStack SAML
https://nvd.nist.gov/vuln/detail/CVE-2024-41107 (n/a)
OpenStack Nova
https://nvd.nist.gov/vuln/detail/CVE-2024-40767 (n/a)
Medium
Arista EOS
https://www.arista.com/en/support/advisories-notices/security-advisory/… (6.5)
https://www.arista.com/en/support/advisories-notices/security-advisory/… (5.3)
Cisco AsyncOS for Secure Email Gateway
https://nvd.nist.gov/vuln/detail/CVE-2024-20429 (6.5)
Cisco RV340 / RV345 Dual WAN Gigabit VPN Routers
https://nvd.nist.gov/vuln/detail/CVE-2024-20416 (6.5)
Cisco Webex App
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAd… (6.4)
Kubernetes (Windows nodes)
https://nvd.nist.gov/vuln/detail/CVE-2024-5321 (6.1)
Dell BIOS Edge Gateway 5200 / 3200
https://www.dell.com/support/kbdoc/en-us/000214917/dsa-2023-225-securit… (6.0-5.7)
Dell ECS
https://nvd.nist.gov/vuln/detail/CVE-2024-30473 (4.9)
HCL BigFix Compliance
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB01138… (4.9-4.7)
Cisco Expressway Series
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAd… (4.7)
Cisco Identity Services Engine
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAd… (4.7)
SFTPGO
https://nvd.nist.gov/vuln/detail/CVE-2024-40430 (n/a)