Tag: rce

New Cleo zero-day RCE flaw exploited in data theft attacks

Dec 10, 2024 5:07 PM

Tags: attack, breach, corporate, data, exploit, flaw, hacker, network, rce, remote-code-execution, software, theft, vulnerability, zero-day

Hackers are actively exploiting a zero-day vulnerability in Cleo managed file transfer software to breach corporate networks and conduct data theft attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-cleo-zero-day-rce-flaw-exploited-in-data-theft-attacks/
Veeam issues patch for critical RCE bug

Dec 4, 2024 3:48 PM

Tags: advisory, backup, cisco, cve, cvss, data, exploit, flaw, germany, Internet, leak, microsoft, mitigation, ntlm, ransomware, rce, remote-code-execution, service, threat, unauthorized, update, veeam, vulnerability, windows

Veeam is warning its customers of two vulnerabilities, of which one is a critical RCE bug, affecting the Service Provider Console (VSPC), a web-based management platform for managed service providers (MSPs).On Tuesday, the data protection and backup solutions provider that powers IT systems availability for leading brands like Cisco, Lenovo, and NASA, issued an advisory…
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)

Dec 4, 2024 12:48 PM

Tags: cve, exploit, rce, remote-code-execution, vulnerability

Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution vulnerability affecting Progress WhatsUp Gold, a popular … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/04/poc-exploit-cve-2024-8785-whatsup-gold/
Progress WhatsUp Gold RCE Vulnerability PoC Exploit Released

Dec 4, 2024 9:48 AM

Tags: cyber, exploit, monitoring, network, rce, remote-code-execution, vulnerability, windows

A registry overwrite remote code execution (RCE) vulnerability has been identified in NmAPI.exe, part of the WhatsUp Gold network monitoring software. This vulnerability, present in versions before 24.0.1, allows an unauthenticated remote attacker to execute arbitrary code on affected systems, posing significant security risks. Vulnerability Details The vulnerability lies within NmAPI.exe, a Windows Communication Foundation…
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console

Dec 4, 2024 6:48 AM

Tags: cve, cvss, flaw, rce, remote-code-execution, service, update, veeam, vulnerability

Veeam has released security updates to address a critical flaw impacting Service Provider Console (VSPC) that could pave the way for remote code execution on susceptible instances.The vulnerability, tracked as CVE-2024-42448, carries a CVSS score of 9.9 out of a maximum of 10.0. The company noted that the bug was identified during internal testing.”From the…
Exploit released for critical WhatsUp Gold RCE flaw, patch now

Dec 3, 2024 8:48 PM

Tags: exploit, flaw, rce, remote-code-execution, update

A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/exploit-released-for-critical-whatsup-gold-rce-flaw-patch-now/
Veeam warns of critical RCE bug in Service Provider Console

Dec 3, 2024 7:48 PM

Tags: rce, remote-code-execution, service, update, veeam, vulnerability

Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/veeam-warns-of-critical-rce-bug-in-service-provider-console/
Hackers Cloning Websites, Exploiting RCE Flaws To Gain Access To Shopping Platforms

Dec 3, 2024 5:48 PM

Tags: access, ai, attack, cyber, cybercrime, data, email, exploit, finance, flaw, hacker, phishing, rce, remote-code-execution, tool, unauthorized

Cybercriminals are leveraging AI-powered phishing attacks, website cloning tools, and RCE exploits to target e-commerce platforms during the holiday season, which allow attackers to craft convincing phishing emails, replicate legitimate websites, and gain unauthorized access to systems. The objective of cybercriminals is to steal sensitive information and financial data from shoppers who are unaware of…
FYSA Critical RCE Flaw in GNU-Linux Systems

Dec 1, 2024 3:26 PM

Tags: cvss, flaw, linux, rce, remote-code-execution, vulnerability

Summary A severe, unauthenticated remote code execution (RCE) flaw has been discovered in GNU Linux systems. The vulnerability, rated CVSS 9.9, affect… First seen on securityintelligence.com Jump to article: securityintelligence.com/news/fysa-critical-rce-flaw-in-gnu-linux-systems/
Millionen von Exim-Mailservern sind anfällig für Zero-DayAngriffe

Dec 1, 2024 1:23 PM

Tags: bug, cyberattack, mail, rce, remote-code-execution, software, zero-day

Eine kritische Sicherheitslücke in der Software Exim Mail Transfer Agent bedroht Millionen von Servern weltweit, denn sie erlaubt Angreifern die Ausfü… First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/millionen-von-exim-mailservern-sind-anfallig-fur-zero-day-rce-angriffe
[Updated] Log4Shell: Critical Severity Apache Log4j Remote Code Execution Being Actively Exploited (CVE-2021-44228 CVE-2021-45046)

Dec 1, 2024 2:19 AM

Tags: apache, cve, exploit, rce, remote-code-execution, update, vulnerability

Update December 17th, 2021: Log4j 2.15.0 Vulnerability Upgraded from Low to Critical Severity (CVSS 9.0) RCE possible in non-default configurations Th… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2021/12/10/log4shell-critical-severity-apache-log4j-remote-code-execution-being-actively-exploited-cve-2021-44228/
Critical VMware Authentication Bypass and RCE Vulnerabilities: CVE-2022-31656 and CVE-2022-31659

Dec 1, 2024 2:19 AM

Tags: authentication, cve, exploit, rce, remote-code-execution, update, vmware, vulnerability

Proof-of-Concept (PoC) exploit recently released by security researchers. VMware recommends patching affected systems immediately. Executive Summary O… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/08/10/critical-vmware-authentication-bypass-and-rce-vulnerabilities-cve-2022-31656-and-cve-2022-31659/
SPNEGO NEGOEX: Critical Pre-Authentication RCE Vulnerability in Modern Microsoft Windows Operating Systems (CVE-2022-37958)

Dec 1, 2024 2:19 AM

Tags: authentication, detection, microsoft, rce, remote-code-execution, threat, vulnerability, windows

Written by Mark Stueck of the Kudelski Security Threat Detection & Research Team Summary On Tuesday, December 13th, Microsoft reclassified a previ… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/12/14/advisory-spnego-negoex-critical-pre-authentication-rce-vulnerability-in-modern-microsoft-windows-operating-systems-cve-2022-37958/
CVE-2023-27997 Pre-Authentication RCE on FortiGate SSL-VPN

Dec 1, 2024 2:19 AM

Tags: authentication, cve, detection, rce, remote-code-execution, threat, update, vpn

Written by Harish Segar and Scott Emerson of the Kudelski Security Threat Detection & Research Team June 13th, update 2: Technical details of bug … First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/06/12/cve-2023-27997-fortigate-ssl-vpn/
F5 BIG-IP Unauthenticated RCE via HTTP Request Smuggling

Dec 1, 2024 2:19 AM

Tags: detection, rce, remote-code-execution, threat

Written by Scott Emerson of the Kudelski Security Threat Detection & Research Team Summary Researchers at Praetorian have discovered a request smu… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/10/27/f5-big-ip-unauthenticated-rce-via-http-request-smuggling/
CVE-2023-46604 Apache ActiveMQ RCE vulnerability

Dec 1, 2024 2:19 AM

Tags: apache, cve, detection, rce, remote-code-execution, threat, vulnerability

Written by Joshua Cartlidge of the Kudelski Security Threat Detection & Research Team Summary On October 25, 2023, Apache disclosed an ActiveMQ Re… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/11/03/cve-2023-46604-apache-activemq-rce-vulnerability/
Ivanti Connect Secure/Policy Secure CVE-2023-46805, CVE-2024-21887 Combine for Unauthenticated RCE, and following CVEs discovered over time

Dec 1, 2024 1:19 AM

Tags: cve, detection, ivanti, rce, remote-code-execution, threat

Written by the Kudelski Security Threat Detection & Research Team (updated on 2024.02.12 by Yann Lehmann) Summary Ivanti Connect Secure (ICS) and … First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/01/11/ivanti-connect-secure-policy-secure-cve-2023-46805-cve-2024-21887-combine-for-unauthenticated-rce/
Splunk Enterprise Multiple Vulnerabilities for RCE

Dec 1, 2024 1:19 AM

Tags: cloud, rce, remote-code-execution, vulnerability

Summary Splunk has disclosed several high-severity vulnerabilities in Splunk Enterprise and Splunk Cloud Platform, which allowattackers to execute rem… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/10/16/splunk-enterprise-multiple-vulnerabilities-for-rce/
FortiManager Critical CVE-2024-47575 >>FortiJump<< Allows RCE

Dec 1, 2024 1:19 AM

Tags: advisory, cve, fortinet, rce, remote-code-execution, zero-day

Summary On October 23, 2024, Fortinet published an advisory for CVE-2024-47575, a critical-severity zero day affecting FortiManager. Missing authentic… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/10/25/fortimanager-critical-cve-2024-47575-fortijump-allows-rce/
Blind SSRF to RCE Vulnerability Exploitation

Dec 1, 2024 1:19 AM

Tags: exploit, rce, remote-code-execution, vulnerability

First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/blind-ssrf-to-rce-vulnerability-exploitation
CVE-2024-3094: Malicious Code in XZ Utils Enables RCE on Linux Systems

Dec 1, 2024 12:18 AM

Tags: cve, linux, malicious, open-source, rce, remote-code-execution

A recent analysis has revealed that the malicious code embedded in the widely-used open-source library XZ Utils (present in multiple Linux distros) ca… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-3094-xz-utils-linux/
‘Tis the season for website cloning tools, RCEs and AI phishing lures

Nov 27, 2024 10:01 PM

Tags: ai, phishing, rce, remote-code-execution, tool

First seen on scworld.com Jump to article: www.scworld.com/news/tis-the-season-for-website-cloning-tools-rces-and-ai-phishing-lures
High severity RCE flaws among several newly addressed IBM bugs

Nov 27, 2024 10:01 PM

Tags: flaw, ibm, rce, remote-code-execution

First seen on scworld.com Jump to article: www.scworld.com/brief/high-severity-rce-flaws-among-several-newly-addressed-ibm-bugs
IBM Patches RCE Vulnerabilities in Data Virtualization Manager, Security SOAR

Nov 26, 2024 3:10 PM

Tags: data, ibm, rce, remote-code-execution, soar, vulnerability

IBM has released patches for two high-severity remote code execution vulnerabilities in Data Virtualization Manager and Security SOAR. The post IBM Patches RCE Vulnerabilities in Data Virtualization Manager, Security SOAR appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/ibm-patches-rce-vulnerabilities-in-data-virtualization-manager-security-soar/
7-Zip RCE Vulnerability Let Attackers Execute Remote Code

Nov 25, 2024 8:55 AM

Tags: cve, cyber, flaw, rce, remote-code-execution, tool, vulnerability

A critical security vulnerability has been disclosed in the popular file archiving tool 7-Zip, allowing attackers to execute arbitrary code remotely. The flaw, identified as CVE-2024-11477, has been attributed to an integer underflow in the Zstandard decompression implementation, which could lead to remote code execution (RCE). CVE-2024-11477 Vulnerability Details The vulnerability, CVE-2024-11477 discovered by […]…
Here’s Yet Another D-Link RCE That Won’t be Fixed

Nov 21, 2024 6:53 PM

Tags: network, rce, remote-code-execution

D-Licious: Stubborn network device maker digs in heels and tells you to buy new gear. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/d-link-router-critical-rce-sol-richixbw/
D-Link Warns of RCE Vulnerability in Legacy Routers

Nov 20, 2024 2:55 PM

Tags: rce, remote-code-execution, router, vulnerability

Six discontinued D-Link router models are affected by a remote code execution (RCE) vulnerability that will not be patched. The post D-Link Warns of RCE Vulnerability in Legacy Routers appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/d-link-warns-of-rce-vulnerability-in-legacy-routers/
D-Link urges users to retire VPN routers impacted by unfixed RCE flaw

Nov 19, 2024 7:53 PM

Tags: flaw, rce, remote-code-execution, router, vpn, vulnerability

D-Link is warning customers to replace end-of-life VPN router models after a critical unauthenticated, remote code execution vulnerability was discovered that will not be fixed on these devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/d-link-urges-users-to-retire-vpn-routers-impacted-by-unfixed-rce-flaw/
Microsoft SharePoint RCE flaw exploits in the wild you’ve had 3 months to patch

Nov 19, 2024 8:50 AM

Tags: exploit, flaw, microsoft, rce, remote-code-execution, update

First seen on theregister.com Jump to article: www.theregister.com/2024/10/23/microsoft_sharepoint_rce_exploited/
Critical 9.8-rated VMware vCenter RCE bug exploited after patch fumble

Nov 18, 2024 11:53 PM

Tags: exploit, rce, remote-code-execution, update, vcenter, vmware

If you didn’t fix this a month ago, your to-do list probably needs a reshuffle First seen on theregister.com Jump to article: www.theregister.com/2024/11/18/vmware_vcenter_rce_exploited/