Frank Lycops

**Name of the Vulnerable Software and Affected Versions** Tanium Client (affected versions not specified) **Description** Tanium Client is subject to a denial of service condition. The vulnerability allows for a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tanium Threat Response (affected versions not specified) **Description** Tanium Threat Response contains an information disclosure issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tanium Appliance (affected versions not specified) **Description** An improper input validation issue exists in Tanium Appliance. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tanium Threat Response (affected versions not specified) **Description** Tanium Threat Response contains an information disclosure issue. The vulnerability allows for the potential exposure of information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tanium Threat Response (affected versions not specified) **Description** Tanium Threat Response contains an information disclosure issue. The vulnerability allows for the potential exposure of information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Nome do software vulnerável e versões afetadas** SolarWinds Platform (versões afetadas não especificadas) **Descrição** O problema está relacionado à falta de proteção da estrutura da página da web no componente “Search/Node Information Section” da interface de usuário da SolarWinds Platform. Isso permite que um invasor remoto realize ataques de script entre sites (XSS). A vulnerabilidade requer autenticação e interação do usuário. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Palo Alto Networks PAN-OS (affected versions not specified) **Description** A local file deletion issue in the software enables an authenticated administrator to delete files from the local file system with elevated privileges. These files can include logs and system components that impact the integrity and availability of the software. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Beckhoff IPC Diagnostics versions prior to 1.8 **Description** The issue allows remote attackers to cause a denial of service, create arbitrary users, or possibly have other unspecified impacts via a crafted request to the "/upnpisapi" endpoint, specifically by using the "beckhoff.com:service:cxconfig:1#Write" SOAP action. **Recommendations** For versions prior to 1.8, update to version 1.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the /config functions and the /upnpisapi endpoint to minimize the risk of exploitation.