Loading...
Security Resources

Software Updates

TrustKeeper Scan Engine Update for October 23, 2020

Summary

The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Enjoy!


New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

Apache

Cisco

  • Cisco IOS for Cisco Industrial Routers Virtual-LPWA Unauthorized Access Vulnerability (cisco-sa-ios-lpwa-access-cXsD7PRA and CSCvr53526) (CVE-2020-3426)
  • Cisco IOS Information Disclosure Vulnerability (cisco-sa-info-disclosure-V4BmJBNF and CSCvu10399) (CVE-2020-3477)
  • Cisco IOS ISDN Q.931 Denial of Service Vulnerability (cisco-sa-iosxe-isdn-q931-dos-67eUZBTf and CSCvr57760) (CVE-2020-3511)
  • Cisco IOS MP-BGP EVPN Denial of Service Vulnerability (cisco-sa-ios-bgp-evpn-dos-LNfYJxfF, CSCvr81264 and CSCvr83128) (CVE-2020-3479)
  • Cisco IOS PROFINET Denial of Service Vulnerability (cisco-sa-profinet-J9QMCHPB, CSCvs48147 and CSCvr83393) (CVE-2020-3409)
  • Cisco IOS PROFINET Link Layer Discovery Protocol Denial of Service Vulnerability (cisco-sa-ios-profinet-dos-65qYG3W5 and CSCvr54115) (CVE-2020-3512)
  • Cisco IOS Split DNS Denial of Service Vulnerability (cisco-sa-splitdns-SPWqpdGW and CSCvt78186) (CVE-2020-3408)

Debian (Credentialed Checks)

Microsoft

phpMyAdmin

  • phpMyAdmin SearchController SQL Injection Vulnerability (PMASA-2020-6) (CVE-2020-26935)
  • phpMyAdmin Transformation Feature Cross-Site Scripting Vulnerability (PMASA-2020-5) (CVE-2020-26934)

Pulse Connect

Red Hat (Credentialed Checks)

Ubuntu (Credentialed Checks)

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.