Blog

Intel SPI Flash vulnerability CVE-2017-5703 Security Advisory Security Advisory Description Configuration of SPI Flash in platforms based on multiple Intel platforms allow a local attacker to ... More info: https://support.f5.com/csp/article/K19855851?utm_source=f5support&utm_medium=RSS

Intel AMT vulnerabilities CVE-2020-0531, CVE-2020-0532, and CVE-2020-0535 Security Advisory Security Advisory Description CVE-2020-0531 Improper input validation in Intel(R) AMT versions before 11 ... More info: https://support.f5.com/csp/article/K06015902?utm_source=f5support&utm_medium=RSS

BIND vulnerability CVE-2020-8619 Security Advisory Security Advisory Description The asterisk character ("*") is allowed in DNS zone files, where it is most commonly present as a wildcard at a ... More info: https://support.f5.com/csp/article/K19807532?utm_source=f5support&utm_medium=RSS

Intel CSME vulnerabilities CVE-2020-0533, CVE-2020-0534, CVE-2020-0536, and CVE-2020-0539 Security Advisory Security Advisory Description CVE-2020-0533 Reversible one-way hash in Intel(R) CSME ... More info: https://support.f5.com/csp/article/K50242910?utm_source=f5support&utm_medium=RSS

Intel AMT vulnerabilities CVE-2020-0537, CVE-2020-0538, and CVE-2020-0540 Security Advisory Security Advisory Description CVE-2020-0537 Improper input validation in subsystem for Intel(R) AMT ... More info: https://support.f5.com/csp/article/K29814751?utm_source=f5support&utm_medium=RSS

Intel CSME vulnerabilities CVE-2020-0541, CVE-2020-0542, CVE-2020-0545 Security Advisory Security Advisory Description CVE-2020-0541 Out-of-bounds write in subsystem for Intel(R) CSME versions ... More info: https://support.f5.com/csp/article/K12445504?utm_source=f5support&utm_medium=RSS

Intel AMT / ISM multiple vulnerabilities Security Advisory Security Advisory Description CVE-2020-0594 Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77 ... More info: https://support.f5.com/csp/article/K12265377?utm_source=f5support&utm_medium=RSS

Intel TXE / SPS vulnerabilities CVE-2020-0566, CVE-2020-0586 Security Advisory Security Advisory Description CVE-2020-0566 Improper Access Control in subsystem for Intel(R) TXE versions before 3. ... More info: https://support.f5.com/csp/article/K44691188?utm_source=f5support&utm_medium=RSS

BIND vulnerability CVE-2020-8618 Security Advisory Security Advisory Description An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally ... More info: https://support.f5.com/csp/article/K62210928?utm_source=f5support&utm_medium=RSS

Project: Drupal coreDate: 2020-June-17Security risk: Critical 15∕25 AC:Complex/A:None/CI:Some/II:Some/E:Theoretical/TD:AllVulnerability: Cross Site Request ForgeryCVE IDs: CVE-2020-13663Description: The Drupal core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.Solution: If you are using Drupal 7.x, upgrade to Drupal 7.72.If you are using Drupal 8.8.x, upgrade to Drupal 8.8.8.If you are using Drupal 8.9.x, upgrade to More info: https://www.drupal.org/sa-core-2020-004