ANSM Safety Recall: Quadripod Cane 548 bis HMS-Vilgo

The French National Agency for Medicines and Health Products Safety (ANSM) has announced a safety recall (R2608257) for the Quadripod cane model 548 bis HMS-Vilgo, initiated by the manufacturer HMS-Vilgo. The recall is directed at pharmacies, healthcare facilities, and home health providers.

CPython Vulnerability Allows Security Policy Bypass

CERT-FR has issued an advisory regarding a vulnerability in CPython that allows for security policy bypass. The advisory urges users to apply the latest security patches to affected systems. The vulnerability is identified by CVE-2026-4519.

Qnap Products Security Vulnerabilities

CERT-FR has issued an advisory regarding multiple security vulnerabilities discovered in Qnap products. These vulnerabilities could allow attackers to achieve remote arbitrary code execution, denial of service, and data confidentiality breaches. Users are advised to consult Qnap's security bulletins for patch information.

Citrix Products Vulnerabilities

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in Citrix NetScaler ADC and Gateway products. These vulnerabilities could lead to data confidentiality breaches and security policy bypasses. Affected versions require immediate patching.

Synology Products Vulnerability Allows Remote Code Execution

CERT-FR has issued an advisory regarding a critical vulnerability in Synology products that allows for remote code execution. The advisory details affected DSM and DSMUC versions and directs users to Synology's security bulletin for patches, noting that a fix for DSMUC is currently unavailable.

VMware Product Vulnerabilities - CERTFR Security Advisory

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in various VMware products. These vulnerabilities could allow an attacker to cause unspecified security issues. Affected systems include specific versions of Tanzu Platform, Stemcells, and Tanzu for Postgres.

Microsoft Edge Vulnerabilities

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in Microsoft Edge, affecting versions prior to 146.0.3856.72. The vulnerabilities could allow an attacker to cause an unspecified security issue. Users are advised to consult Microsoft's security bulletins for patch information.

Microsoft Product Vulnerabilities Detailed

CERT-FR has issued an advisory detailing multiple vulnerabilities discovered in Microsoft products, referencing numerous CVEs. These vulnerabilities could allow an attacker to cause unspecified security issues. Users are advised to consult Microsoft's security bulletins for patch information.

Guidance on Sanctions Exceptions and Licence Applications

The UK's Office of Financial Sanctions Implementation (OFSI) has updated guidance on how to use exceptions and apply for licences to comply with sanctions measures. The guidance clarifies automatic exemptions and the process for obtaining written permission for otherwise prohibited activities across various sanctions regimes.

SEND Mediation Contract Awarded to Multiple Councils

The UK Government has awarded a contract valued at £1.2M for SEND (Special Educational Needs and Disabilities) Mediation and Disagreement Resolution services to Rochdale Borough Council, Stockport Metropolitan Borough Council, Tameside Metropolitan Borough Council, and Trafford Council. This award is part of the UK's public procurement process under the Procurement Act 2023.

Eye Care Services Contract Awarded for £139,200

NHS Hertfordshire and West Essex Integrated Care Board has awarded a contract for Primary Eye Care Services Post Operative Cataract for £139,200. The contract was awarded to the existing provider who has been delivering a good service with positive patient feedback and outcomes.

Estes v. Palm Beach County School District - Workers' Comp Statute of Limitations

The Florida District Court of Appeal reversed a lower court's decision regarding the statute of limitations for workers' compensation claims. The court clarified the interpretation of the tolling provision under § 440.19(2), Florida Statutes, impacting how claim deadlines are calculated after benefits are provided.

Rocky Mountain Power Wind and Solar Integration Rate Update

The Idaho Public Utilities Commission has issued a Notice of Modified Procedure regarding Rocky Mountain Power's application to update wind and solar integration rates for small power generation qualifying facilities. The Commission is seeking public comments on the application.

Clearwater Power 2026 Wildfire Plan Approved

The Idaho Public Utilities Commission has issued Order No. 36977, initiating a modified procedure for Clearwater Power Company's 2026 Idaho Wildfire Mitigation Plan application. The order sets deadlines for public comments and company replies regarding the plan, which is filed under the Wildfire Standard of Care Act.

Market Engagement for Talking Therapies in Essex

NHS Mid and South Essex Integrated Care Board has published a Prior Information Notice (PIN) to announce a market engagement event for talking therapies and psychological therapies for severe mental health problems in Essex. The event will take place virtually on April 20, 2026, to inform potential providers about the upcoming commissioning process.

UK Hydrographic Office Application Support 2027 Notice

The UK Hydrographic Office has published a procurement notice for outsourced application support services valued at an estimated £12,000,000 including VAT. The contract is expected to commence on April 6, 2027, with a potential extension.

UK Hydrographic Office - Application Support Contract Award

The UK Hydrographic Office has awarded a 1-year, £1.6 million contract to MASTEK (UK) LTD. for application support during a transition period. This award is a direct award due to technical reasons and aims to facilitate a transition to outsourced support, with a larger 5-year contract to be competed for in 2026.

Sheppey M&E Works Contract Award

NHS Property Services Limited has awarded a contract for Sheppey M&E Works to Primech Building Services Limited. The contract value is £407,961.22 excluding VAT, with a duration from March 16, 2026, to August 7, 2026.

DfI TRAM seeks supply and delivery of traffic management equipment

The UK Government's Find a Tender service has published a notice for the Department for Infrastructure's Transport and Road Asset Management (DfI TRAM) seeking the supply and delivery of various traffic management equipment. The estimated total value for the contract, which spans one year with potential for four annual extensions, is £798,066 including VAT.

Child Poverty and Health Market Engagement Notice

The UK Department of Health & Social Care published a market engagement notice regarding child poverty and its health impacts. The notice announces a virtual roundtable event on April 15, 2026, to discuss collaboration opportunities with external organizations.

House of Commons Digitisation Consultant Contract

The House of Commons has published a contract notice for a Digitisation Consultant. Scan Data Experts Limited was awarded the contract for £32,800, excluding VAT, to develop a digitisation strategy and business case for Parliament. The contract duration is one year, from April 1, 2026, to March 31, 2027.

Anglian Water Services - Regulatory Assurance Services Contract Award

Anglian Water Services Limited has awarded a contract for Regulatory Assurance Services to AQUA CONSULTANTS LIMITED and JACOBS U.K. LIMITED. The contract, valued at £4 million over an estimated eight-year duration, aims to support the demonstration of Ofwat's Price Control Deliverables under the PR24 framework.

UKRI Trial Floor Section Supply & Install Contract Notice

UK Research & Innovation (UKRI) has published a contract notice for the supply and installation of a Trial Floor Section at Boulby Mine. The contract was directly awarded to Amalgamated Construction Ltd for £331,011.60, with work scheduled from March to August 2026.

Contract Award Notice for Planned and Reactive Works

The UK Government has published a contract award notice for planned and reactive works across drainage, flooring, and electrical systems. Simply Serve Ltd has been awarded the contract, which will serve Somerset NHS Foundation Trust and Somerset Council sites.

Contract Award: Surfacing Works at Sole Bay Health Centre

NHS Property Services Limited has awarded a contract for surfacing works at Sole Bay Health Centre to Resolute Retail Solutions Limited for £32,496. The contract was signed on March 21, 2026, and is scheduled for completion within 10 days.

Early Market Engagement on Health and Work Outcomes Contracting

The UK Department of Health & Social Care (DHSC) and NHS England have issued a notice for early market engagement regarding potential outcomes-based contracts for health and work. This engagement seeks views from potential investors and service providers on the design and feasibility of these contracts before any formal market activity.

Student Loans Company Contract Notice

The UK's Student Loans Company has published a contract notice for a dedicated student-focused website. The contract, valued at £48,000 including VAT, was awarded to STUDENT ROOM GROUP LIMITED and is effective from December 1, 2025, to March 31, 2027.

Care at Home, Night Service, Extra Care Tender Termination

Oldham Metropolitan Borough Council has terminated the tender process for Care at Home, Night Service, and Extra Care contracts. The decision was made due to a council resolution removing the contractual obligation for care providers to pay employees at least the Real Living Wage.

Eastlight Community Homes Void Clearance and Property Cleaning Services Tender

Eastlight Community Homes has published a tender notice for void clearance and property cleaning services. The estimated total value of the contract is £4,500,000 including VAT, with a contract duration of up to 5 years. The tender is being conducted under the Procurement Act 2023.

Stowmarket Christmas Lighting Scheme Tender

Stowmarket Town Council has published a tender notice for a Christmas lighting scheme. The estimated value of the contract is £24,000 including VAT, with a submission deadline of April 30, 2026. The contract is expected to run from June 2026 to January 2029, with a possible extension.

MOT Garage Fit Out Tender, Cambridge

Cambridge City Council has issued a tender notice for the fit-out of an MOT garage on Cowley Road, Cambridge. The estimated value of the contract is £56,000 excluding VAT, with a duration of two years.

Bus Services Contract Awarded for Early Morning and Late Evening Routes

Portsmouth City Council has awarded a contract for BSIP-funded early morning and weekend late evening bus services on routes 1, 2, 3, 7, and 8. The contract, awarded to an incumbent operator due to technical and economic reasons, will run from January 1, 2026, to December 31, 2026, to improve access to employment and support the night-time economy.

Nottingham City Council Electrical Services Tender

Nottingham City Council has published a tender notice for electrical services, with an estimated value of £2.4 million. The tender is for a period of 6 years, with an option for extension. The deadline for submissions is April 21, 2026.

UK Atomic Energy Authority Electricians Framework Tender Notice

The UK Atomic Energy Authority has issued a preliminary market engagement notice for an Electricians Framework tender. The estimated total value of the framework is £1.2 million, with an initial contract duration of two years, extendable to four. This notice is part of the procurement process under the Procurement Act 2023.

FEC Corporate PAC Webinar Training

The Federal Election Commission (FEC) is hosting a two-day webinar on April 21-22, 2020, to provide training for corporate Political Action Committees (PACs). The sessions will cover campaign finance rules, reporting scenarios, and candidate support methods relevant to corporate PACs.

Supreme Court Order List - March 23, 2026

The U.S. Supreme Court issued its order list for March 23, 2026. The Court granted certiorari in one case, vacated the judgment, and remanded it for further consideration. Additionally, the Court denied certiorari in numerous cases and granted or denied various motions in pending cases.

PTC FlexPLM and Windchill Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory for critical vulnerabilities in PTC FlexPLM and Windchill software, allowing remote code execution. The advisory lists affected product versions and provides mitigation information. Users are advised to apply available updates to address these severe security risks.

Langflow Vulnerabilities Advisory

CERT-Bund has issued a security advisory for Langflow, detailing multiple critical vulnerabilities (CVSS Base Score 9.1) that could allow remote code execution, information disclosure, and data manipulation. The advisory affects open-source Langflow versions prior to 1.7.0 and 1.9.0, impacting Linux, UNIX, and Windows operating systems.

Keycloak Vulnerabilities Allow Remote Authenticated Attacks

CERT-Bund has issued a security advisory for Keycloak, detailing vulnerabilities that allow remote authenticated attackers to bypass security measures and disclose information. The advisory highlights a CVSS base score of 5.8 and affects Keycloak versions used on Linux and UNIX operating systems.

Checkmk Vulnerability Allows Bypassing Security Controls

CERT-Bund has issued a security advisory regarding a vulnerability in Checkmk IT monitoring software. The vulnerability, with a CVSS base score of 6.3, allows authenticated remote attackers to bypass security controls. Affected versions include Checkmk versions prior to 2.6.0b1, 2.5.0b1, and 2.4.0p25.

SmarterMail Vulnerabilities Advisory

CERT-Bund has issued a security advisory for SmarterTools SmarterMail, detailing multiple vulnerabilities with a CVSS Base Score of 8.6. These vulnerabilities allow for remote attacks, potentially leading to denial of service, credential exposure, and other impacts. Mitigation is available.

MariaDB Vulnerability: Denial of Service, Potential Code Execution

CERT-Bund has issued a security advisory for MariaDB, detailing a vulnerability that allows remote, authenticated attackers to cause a Denial of Service and potentially execute arbitrary code. The advisory affects specific versions of MariaDB Server across Linux, UNIX, and Windows operating systems.

Uptime Kuma Vulnerability Allows Information Disclosure

CERT-Bund has issued a security advisory for Uptime Kuma, detailing a vulnerability that allows remote authenticated attackers to disclose information. The advisory assigns a CVSS Base Score of 6.5 and a Temporal Score of 5.9, classifying it as medium severity. Mitigation measures are available.

PyTorch Vulnerability Allows Local Code Execution

CERT-Bund has issued a security advisory for PyTorch, detailing a vulnerability that allows local code execution. The advisory affects PyTorch version 2.10.0 on Linux, UNIX, and Windows systems. Mitigation is available.

MinIO Vulnerability Allows Info Disclosure and Security Bypass

CERT-Bund has issued a security advisory for MinIO, a S3-compatible object storage system. A critical vulnerability (CVSS 9.1) allows remote attackers to disclose information and bypass security measures. The advisory urges users to apply mitigations.

Linksys MR9600 Router Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory for the Linksys MR9600 Router, detailing a vulnerability that allows remote, authenticated attackers to execute arbitrary code. The advisory highlights a CVSS Base Score of 8.8, indicating a high severity.

etcd Security Advisory: Multiple Vulnerabilities

CERT-Bund has issued a security advisory regarding multiple vulnerabilities in etcd, versions prior to 3.6.9, 3.5.28, and 3.4.42. These vulnerabilities allow attackers to bypass security measures, with a high CVSS base score of 8.6. Affected systems include Linux, UNIX, and Windows.

GNU libc Vulnerabilities Allow DNS Response Manipulation

CERT-Bund has issued a security advisory regarding multiple vulnerabilities in GNU libc, affecting Linux and other Unix-based systems. These vulnerabilities allow remote attackers to manipulate DNS responses. The advisory provides information on affected versions and mitigation strategies.

Python Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory regarding a vulnerability in Python versions prior to 3.15.0, which could allow attackers to execute arbitrary code. The advisory provides mitigation information and notes that the vulnerability affects Linux, UNIX, and Windows operating systems.

Notice of Intent to Sole Source Environmental Consulting Services

The Department of the Navy intends to award a sole-source purchase order to GeoSyntec Consultants, LLC for environmental consulting services, including literature review, spatial analysis, and sampling plan development. This notice is a justification for non-competitive procurement, with a response deadline of March 30, 2026.