Today Siemens published two out-of-zone updates for their Parasolid and Mendix Runtime products. Last Tuesday, they published 10 new advisories and 19 updates as part of their once-a-month tranche of cybersecurity communications. This is the fifth time the Mendix advisory has been the subject of an out-of-zone update.
NOTE: I will address the 19 updates published by Siemens on Tuesday this weekend. Well 18, they published an earlier Mendix Runtime update on Tuesday, that was addressed here by inclusion.
Updates
Parasolid Update - This update provides additional
information on the out-of-bounds write advisory that was originally published
on December 10th, 2024.
Mendix Runtime Update - This update provides
additional information on the usernames disclosure advisory that was originally
published on September 10th, 2024, and most recently updated on
December 10th, 2024.
For more information about these updates, including brief
summaries of the changes made and commentary on those changes, see my article
at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/siemens-publishes-2-out-of-zone-updates
- subscription required.
Posts
No comments:
Post a Comment