Tag: cve
-
Critical VMware Authentication Bypass and RCE Vulnerabilities: CVE-2022-31656 and CVE-2022-31659
Proof-of-Concept (PoC) exploit recently released by security researchers. VMware recommends patching affected systems immediately. Executive Summary O… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/08/10/critical-vmware-authentication-bypass-and-rce-vulnerabilities-cve-2022-31656-and-cve-2022-31659/
-
OpenSSL 3 Buffer overflow vulnerabilities: CVE-2022-3786 and CVE-2022-3602
Note: This Bulletin was contributed to by Kudelski Security’s Threat Detection & Research Team. Specifically Mark Stueck. Executive Summary On the… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/11/01/openssl-3-buffer-overflow-vulnerabilities-cve-2022-3786-and-cve-2022-3602/
-
CVE-2023-23397 Microsoft Outlook Privilege Elevation Critical Vulnerability
Written by Lina Jiménez Becerra, Anton Jörgensson and Mark Stueck of the Kudelski Security Threat Detection & Research Team CVE-2023-23397: Abili… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/03/15/cve-2023-23397-microsoft-outlook-privilege-elevation-critical-vulnerability/
-
Multiple CVEs in threshold cryptography implementations
Introduction io.finnet hired us to perform a code audit of their threshold ECDSA signature implementation called tss-lib based on the paper UC Non-Int… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/03/23/multiple-cves-in-threshold-cryptography-implementations/
-
CVE-2023-27532 Veeam Backup Replication Vulnerability Exposes Stored Credentials, No Auth Necessary
Written by Mark Stueck and Scott Emersonof the Kudelski Security Threat Detection & Research Team CVE-2023-27532: Unauthenticated Access to Cleart… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/03/10/cve-2023-27532-veeam-backup-amp-replication-vulnerability-exposes-stored-credentials-no-auth-necessary/
-
CVE-2023-27997 Pre-Authentication RCE on FortiGate SSL-VPN
Written by Harish Segar and Scott Emerson of the Kudelski Security Threat Detection & Research Team June 13th, update 2: Technical details of bug … First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/06/12/cve-2023-27997-fortigate-ssl-vpn/
-
CVE-2023-33308 Critical Remote Code Execution (RCE) on FortiOS/FortiProxy
Written by Eric Dodge and Harish Segar of the Kudelski Security Threat Detection & Research Team Summary Fortinet recently disclosed a critical bu… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/07/13/cve-2023-33308-critical-remote-code-execution-rce-on-fortios-fortiproxy/
-
CVE-2023-36884 Office and Windows HTML Remote Code Execution Vulnerability
Written by Yann Lehmann and Harish Segar of the Kudelski Security Threat Detection & Research Team Summary On July 11th, Microsoft disclosed a rem… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/07/14/cve-2023-36884-office-and-windows-html-remote-code-execution-vulnerability/
-
CVE-2023-46604 Apache ActiveMQ RCE vulnerability
Written by Joshua Cartlidge of the Kudelski Security Threat Detection & Research Team Summary On October 25, 2023, Apache disclosed an ActiveMQ Re… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/11/03/cve-2023-46604-apache-activemq-rce-vulnerability/
-
Ivanti Connect Secure/Policy Secure CVE-2023-46805, CVE-2024-21887 Combine for Unauthenticated RCE, and following CVEs discovered over time
Written by the Kudelski Security Threat Detection & Research Team (updated on 2024.02.12 by Yann Lehmann) Summary Ivanti Connect Secure (ICS) and … First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/01/11/ivanti-connect-secure-policy-secure-cve-2023-46805-cve-2024-21887-combine-for-unauthenticated-rce/
-
CVE-2024-4956 Unauthenticated Path Traversal in Nexus Repository Manager 3
Nexus Repository Manager serves as a hub for managing, storing, and disseminating development artifacts. A critical security flaw, identified as a pat… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/06/03/cve-2024-4956-unauthenticated-path-traversal-in-nexus-repository-manager-3/
-
Critical Authentication Bypass in Juniper Session Smart Router CVE-2024-2973
Summary Juniper Networks has issued an out-of-cycle security bulletin to address a critical vulnerability (CVE-2024-2973) thataffects Session Smart Ro… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/07/01/critical-authentication-bypass-in-juniper-session-smart-router-cve20242973/
-
Critical Security Updates for Palo Alto Networks: CVE-2024-5910 CVE-2024-3596
Summary Palo Alto Networks has released critical security updates addressing several vulnerabilities, including a high-severity flaw in the Expedition… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/07/15/critical-security-updates-for-palo-alto-networks-cve-2024-5910-cve-2024-3596/
-
Security Advisory: CVE-2024-45519
Summary CVE-2024-45519 is a critical security vulnerability discovered in the postjournal service of Zimbra Collaboration Suite, a popular email and c… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/10/02/security-advisory-cve-2024-45519/
-
Kubernetes Image Builder Vulnerabilities
Summary Recently released were two vulnerabilities, CVE-2024-9486 (CVSS 9.8) and CVE-2024-9594 (CVSS 6.3), that impact the Kubernetes Image Builder. T… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/10/17/kubernetes-image-builder-vulnerabilities/
-
FortiManager Critical CVE-2024-47575 >>FortiJump<< Allows RCE
Summary On October 23, 2024, Fortinet published an advisory for CVE-2024-47575, a critical-severity zero day affecting FortiManager. Missing authentic… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/10/25/fortimanager-critical-cve-2024-47575-fortijump-allows-rce/
-
regreSSHion Vulnerability: CVE-2024-6387 in OpenSSH
id=introduction>Introduction OpenSSH stands as a cornerstone for secure remote administration. However, recent findings have found a vulnerability… First seen on thefinalhop.com Jump to article: www.thefinalhop.com/regresshion-vulnerability-cve-2024-6387-in-openssh/
-
CVE-2024-4879 and CVE-2024-5217 (ServiceNow RCE) Exploitation in a Global Reconnaissance Campaign
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/cve-2024-4879-and-cve-2024-5217-servicenow-rce-exploitation-in-a-global-reconnaissance-campaign
-
CVE-2023-48022: ShadowRay Flaw a Critical Threat to AI Infrastructure
The Oligo research team recently uncovered an ongoing attack campaign, dubbed ShadowRay, targeting a vulnerability in Ray, a widely utilized open-sour… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2023-48022-shadowray/
-
CVE-2024-3094: Malicious Code in XZ Utils Enables RCE on Linux Systems
A recent analysis has revealed that the malicious code embedded in the widely-used open-source library XZ Utils (present in multiple Linux distros) ca… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-3094-xz-utils-linux/
-
CVE-2024-21388 Enables Silent Installation of Malicious Extensions
A recently patched security vulnerability in Microsoft Edge could have allowed malicious actors to stealthily install arbitrary extensions on users’ s… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-21388-edge-flaw/
-
CVE-2024-28085: Linux Flaw Could Leak Passwords
A recently identified vulnerability affecting the >>wall
-
CVE-2024-5035: Critical Flaw in TP-Link Archer C5400X Gaming Router
Security researchers identified a critical security vulnerability in the TP-Link Archer C5400X gaming router, which could easily allow remote code exe… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-5035-tp-link-archer-c5400x/
-
CVE-2024-38193 Exploited by Lazarus Group in Targeted Attacks
A newly patched security vulnerability in Microsoft Windows has been actively exploited by the Lazarus Group, a notorious state-sponsored hacking grou… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-38193-lazarus-group/
-
Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks
Microsoft has addressed four security flaws impacting its artificial intelligence (AI), cloud, enterprise resource planning, and Partner Center offerings, including one that it said has been exploited in the wild.The vulnerability that has been tagged with an “Exploitation Detected” assessment is CVE-2024-49035 (CVSS score: 8.7), a privilege escalation flaw in partner.microsoft[.]com.”An First seen on thehackernews.com…
-
Zyxel Firewalls Targeted by Helldown Ransomware: CVE-2024-11667 Exploited
Zyxel Firewalls have become a key target in recent cyberattacks, with attackers exploiting a critical vulnerability to deploy the dangerous Helldown ransomware. The German CERT (CERT-Bund) has issued a warning alongside Zyxel detailing the extent of these attacks and outlining immediate steps that organizations must take to protect their network devices. First seen on thecyberexpress.com…
-
Zyxel Firewall Vulnerability Actively Exploited in Attacks
Zyxel has announced awareness of active exploitation attempts by threat actors targeting their firewall products. This follows a detailed report by cybersecurity firm Sekoia highlighting vulnerabilities previously disclosed in Zyxel’s systems. The company has responded swiftly to these potential threats, aiming to safeguard its users through vital firmware updates and security enhancements. CVE-2024-11667: The Vulnerability…
-
Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit
Tags: access, antivirus, apt, attack, backdoor, browser, business, computer, cve, cybercrime, cyberespionage, defense, endpoint, exploit, flaw, germany, government, group, insurance, intelligence, malicious, microsoft, msp, password, powershell, russia, software, threat, ukraine, vulnerability, windows, zero-dayA Russia-aligned group that engages in both cybercrime and cyberespionage operations used a zero-click exploit chain last month that combined previously unknown and unpatched vulnerabilities in Firefox and Windows.The campaign, whose goal was to deploy the group’s RomCom backdoor on computers, targeted users from Europe and North America. The APT group, also known as Storm-0978,…
-
ProjectSend Authentication Vulnerability Exploited in the Wild
ProjectSend, an open-source file-sharing web application, has become a target of active exploitation following the recent assignment of CVE-2024-11680 on November 25, 2024. Despite the availability of a patch for more than a year, adoption rates remain alarmingly low, leaving many instances vulnerable to attack. ProjectSend Authentication Vulnerability ProjectSend is moderately popular, with nearly 1,500…