CVE-2017-3167: Apache httpd 2.x ap_get_basic_auth_pw authentication bypass

CVE-2017-3167: ap_get_basic_auth_pw authentication bypass Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.2.0 to 2.2.32 httpd 2.4.0 to 2.4.25 Description: Use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may

ESA-2017-054: EMC Avamar Multiple Vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 ESA-2017-054: EMC Avamar Multiple Vulnerabilities EMC Identifier: ESA-2017-054 CVE Identifiers: CVE-2017-4989, CVE-2017-4990 Affected products: • EMC Avamar Server Software 7.4.1-58, 7.4.0-242 (CVE-2017-4990) • EMC Avamar Server

ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability EMC Identifier: ESA-2017-053 CVE Identifier: CVE-2017-4988 Severity Rating: CVSS v3 Base Score: Base Score=> 7.2(AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H) Affected products: