VMware urged immediate patching of the max-severity, arbitrary file upload flaw in Analytics service, which affects all appliances running default 6.5, 6.7 and 7.0 installs.
https://threatpost.com/vmware-ransomware-bug-vcenter-server/174901/
SonicWall ‘Botches’ October Patch for Critical VPN Bug
-
Company finally rolls out the complete fix this week for an RCE flaw affecting some 800,000 devices that could result in crashes or prevent users from connecting to corporate resources.
https://threatpost.com/sonicwall-botches-critical-vpn-bug/167152/