Tag: vulnerability

Ivanti Vulnerability Exploited to Install ‘DSLog’ Backdoor on 670+ IT Infrastructures
News

Ivanti Vulnerability Exploited to Install ‘DSLog’ Backdoor on 670+ IT Infrastructures

Threat actors are using a newly discovered security vulnerability that affects ZTA, Policy Secure, and Ivanti Connect Secure gateways to install a backdoor on vulnerable devices known as DSLog. The exploitation of CVE-2024-21893 was discovered by Orange Cyberdefense within hours of the proof-of-concept (PoC) code being made public, according to their results. The SAML module contains a server-side request forgery (SSRF) vulnerability called CVE-2024-21893, which was discovered by Ivanti late last month together with CVE-2024-21888. If successfully exploited, this vulnerability could provide access to previously restricted sites without the need for authentication. Since then, the Utah-based corporation has admitted that the vulnerability has reduced targeted attacks read more Iva...
Exploit released for Android local elevation flaw impacting 7 OEMs
News

Exploit released for Android local elevation flaw impacting 7 OEMs

The public can now see a proof-of-concept (PoC) attack on GitHub for a local privilege escalation vulnerability that affects at least seven Android OEMs. But since the attack needs local access, researchers will mostly benefit from its dissemination. The vulnerability, identified as CVE-2023-45779, was found early in September 2023 by Meta's Red Team X and fixed in the December 2023 security update for Android without revealing any information that an attacker may use to identify and take advantage of it. Because APEX modules are signed insecurely with test keys, attackers can elevate their privileges locally by pushing malicious updates read more Exploit released for Android local elevation flaw impacting 7 OEMs. Get up to date on the latest cybersecurity news and enhance your k...
Brazilian Feds Dismantle Grandoreiro Banking Trojan, Arresting Top Operatives
News

Brazilian Feds Dismantle Grandoreiro Banking Trojan, Arresting Top Operatives

Several Brazilian operators responsible for the Grandoreiro malware have been apprehended as a result of a law enforcement investigation conducted in Brazil. In the states of São Paulo, Santa Catarina, Pará, Goiás, and Mato Grosso, the Federal Police of Brazil reported that it had executed 13 search and seizure warrants in addition to five temporary arrest warrants. The Slovak cybersecurity company ESET, which contributed more support to the endeavor, claimed to have found a network protocol design vulnerability in Grandoreiro that enabled it to recognize the victimology patterns. Grandoreiro is one of several banking trojans from Latin America that mostly target nations like Spain, Mexico, Brazil, and Argentina read more Brazilian Feds Dismantle Grandoreiro Banking Trojan Arrest...
Researchers Uncover How Outlook Vulnerability Could Leak Your NTLM Passwords
News

Researchers Uncover How Outlook Vulnerability Could Leak Your NTLM Passwords

Threat actors may use a security hole in Microsoft Outlook that has since been fixed to gain access to hashed passwords for NT LAN Manager (NTLM) v2 when an NTLM file is opened. The IT giant fixed the problem, identified as CVE-2023-35636 (CVSS score: 6.5), in its Patch Tuesday releases for December 2023. Microsoft stated in a warning published last month that "in an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file. An attacker might host a website read more Researchers Uncover How Outlook Vulnerability Could Leak Your NTLM Passwords. Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, br...
U.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM Vulnerability
News

U.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM Vulnerability

A serious issue that has been fixed and affects Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core was added by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to its list of known exploited vulnerabilities (KEV) on Thursday. The agency stated that the flaw is being actively exploited in the field. Concerning CVE-2023-35082 (CVSS score: 9.8), this vulnerability is an authentication bypass that is a workaround for another vulnerability in the same solution that is being tracked as CVE-2023-35078 (CVSS score: 10.0). "If exploited, this vulnerability enables an unauthorized, remote (internet-facing) actor to potentially access users' personally identifiable information and make limited changes to the server read more U.S. Cybersecurity Agency Warns of Actively E...
Zero-Day Alert Update Chrome Now to Fix New Actively Exploited Vulnerability
News

Zero-Day Alert Update Chrome Now to Fix New Actively Exploited Vulnerability

Updates for Google's Chrome browser, which addresses four security flaws including an active zero-day vulnerability, were made available on Tuesday. Threat actors may be able to use the problem, which is tracked as CVE-2024-0519, to cause a crash by taking advantage of an out-of-bounds memory access in the V8 JavaScript and WebAssembly engine. According to MITRE's Common Weakness Enumeration (CWE), an attacker may be able to obtain secret values, such as memory addresses, by reading out-of-bounds memory. These values can then be used to get around security measures like ASLR and increase the likelihood of successfully exploiting a different danger to achieve code execution read more Zero-Day Alert Update Chrome Now to Fix New Actively Exploited Vulnerability. Get up to date o...
High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners
News

High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners

Rexroth NXA015S-36V-B smart nutrunners and Bosch BCC100 thermostats have been found to contain a number of security flaws that, if properly exploited, might let attackers run arbitrary code on the compromised devices. The vulnerability in Bosch BCC100 thermostats was found by Romanian cybersecurity company Bitdefender in August of last year. Bitdefender stated that an attacker may use this vulnerability to modify the firmware of the device and install a rogue version. Bosch fixed the high-severity issue, which was tracked as CVE-2023-49722 (CVSS score: 8.3), in November 2023.The BCC101, BCC102, and BCC50 thermostat products have a network port 8899 that is always accessible, allowing an unauthorized connection from a nearby WiFi network read more High Severity Flaws Uncovered in Bos...
New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems
News

New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems

Researchers in cybersecurity have created a proof-of-concept (PoC) code that runs a memory-resident payload by taking advantage of a recently discovered severe vulnerability in the open-source Apache OfBiz Enterprise Resource Planning (ERP) system. This vulnerability, identified as CVE-2023-51467 (CVSS score: 9.8), is a workaround for another serious flaw in the same software, identified as CVE-2023-49070 (also rated at 9.8), which could be used as a weapon to get around authentication and remotely run arbitrary code. Although the vulnerability was addressed in the most recent release of Apache OFbiz version 18.12.11, threat actors have been seen trying to take advantage of it by focusing on susceptible systems. According to VulnCheck's most recent discoveries read more New PoC Expl...
Cisco Fixes High-Risk Vulnerability Impacting Unity Connection Software
News

Cisco Fixes High-Risk Vulnerability Impacting Unity Connection Software

Cisco has patched Unity Connection with software upgrades to fix a serious security vulnerability that might allow an attacker to run arbitrary instructions on the underlying system. The vulnerability, identified as CVE-2024-20272 (CVSS score: 7.3), is an arbitrary file upload flaw that exists in the web-based administration interface. It is caused by incorrect user-supplied data validation and a lack of authentication in a particular API. In a warning published on Wednesday, Cisco stated that "an attacker could exploit this vulnerability by uploading arbitrary files to an affected system." "A successful exploit could allow the attacker to store malicious files on the system, execute arbitrary commands on the operating system read more Cisco Fixes High-Risk Vulnerability Impacting U...