Security Affairs

MARCH 27, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds a Microsoft SharePoint vulnerability disclosed at the 2023 Pwn2Own to its Known Exploited Vulnerabilities catalog. Microsoft addressed the remote code execution flaw in SharePoint Server, tracked as CVE-2023-24955 (CVSS Score 7.2), in May 2023.

IT 116

IT Cybersecurity Authentication Cloud 116

Outpost24

JANUARY 13, 2023

Cyber Threat Landscape Study 2023: Outpost24’s honeypot findings from over 42 million attacks. Fri, 01/13/2023 - 02:53. The 2023 Cyber Threat Landscape Study provides valuable threat intelligence to help you implement the appropriate security measures against real threats. Florian Barre. Threat Intelligence.

Honeypots 52

Honeypots Cybersecurity Security 52

Security Affairs

APRIL 9, 2024

running on OLED55A23LA Below is the disclosure timeline: November 01, 2023: Vendor disclosure November 15, 2023: Vendor confirms the vulnerabilities. running on OLED55A23LA Below is the disclosure timeline: November 01, 2023: Vendor disclosure November 15, 2023: Vendor confirms the vulnerabilities.

Authentication 125

Authentication Libraries Access Information Security 125

Security Affairs

NOVEMBER 17, 2023

US CISA added three new vulnerabilities (tracked as CVE-2023-36584 , CVE-2023-1671 , and CVE-2023-2551 ) to its Known Exploited Vulnerabilities catalog. The CVE-2023-1671 flaw is a pre-auth command injection issue that resides in the warn-proceed handler, it affects appliances older than version 4.3.10.4.

IT 115

IT Cybersecurity Risk Security 115

Security Affairs

OCTOBER 11, 2023

US CISA added the flaw CVE-2023-21608 in Adobe Acrobat Reader to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added five new flaws to its Known Exploited Vulnerabilities Catalog , including a high-severity flaw ( CVE-2023-21608 ) (CVSS score: 7.8) in Adobe Acrobat Reader.

IT 118

IT Encryption Cybersecurity Risk 118

Security Affairs

MARCH 6, 2024

Google addressed the issue in June 2023, the IT giant is aware of “limited, targeted exploitation.” “There are indications that CVE-2023-21237 may be under limited, targeted exploitation.” The exploitation of this vulnerability could lead to local information disclosure with no additional execution privileges needed.

IT 113

IT Cybersecurity Ransomware Risk 113

Security Affairs

FEBRUARY 7, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added a Google Chromium V8 Type Confusion bug, tracked as CVE-2023-4762 , to its Known Exploited Vulnerabilities (KEV) catalog. The experts reported that the exploit chain of the above flaws was delivered in two ways, one of them was exploiting CVE-2023-4762.

IT 104

IT Cybersecurity Risk Security 104

Security Affairs

JANUARY 24, 2024

Thousands of GitLab servers are vulnerable to zero-click account takeover attacks exploiting the flaw CVE-2023-7028. The most critical vulnerability, tracked as CVE-2023-7028 (CVSS score 10), is an account takeover via Password Reset. The company is not aware of attacks in the wild exploiting the vulnerability CVE-2023-7028.

Passwords 130

Passwords Security Information Security IT 130

Security Affairs

DECEMBER 6, 2023

Google Threat Analysis Group and Google Project Zero first reported that the CVE-2023-33106, CVE-2023-33107, CVE-2022-22071 and CVE-2023-33063 were actively exploited in targeted attacks. CISA orders federal agencies to fix these vulnerabilities by December 26, 2023.

IT 108

IT Cybersecurity Risk Security 108

Security Affairs

OCTOBER 23, 2023

US CISA added the vulnerability CVE-2023-20273 in Cisco IOS XE to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2023-20273 in Cisco IOS XE to its Known Exploited Vulnerabilities catalog. Cisco has assigned CVE-2023-20273 to this issue.

IT 104

IT Passwords Access Cybersecurity 104

Security Affairs

JANUARY 9, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added an Apache Superset flaw, tracked as CVE-2023-27524 , to its Known Exploited Vulnerabilities (KEV) catalog. In April 2022, Horizon3 researchers discovered a remote code execution, tracked as CVE-2023-27524 (CVSS score: 8.9), in Apache Superset.

IT 99

IT Cybersecurity Authentication Ransomware 99

Security Affairs

MAY 21, 2024

The issue, tracked as CVE-2023-43208 , is a Deserialization of Untrusted Data Vulnerability. Cybersecurity and Infrastructure Security Agency (CISA) added a NextGen Healthcare Mirth Connect vulnerability to its Known Exploited Vulnerabilities (KEV) catalog.

IT 98

IT Data structuring Cybersecurity Risk 98

Krebs on Security

FEBRUARY 9, 2024

However, the changes may date back to September 2023, when Juniper announced it had rebuilt its customer support portal. Update, 11:01 a.m. ET: An earlier version of this story quoted George as saying he was able to see support information for the U.S. Department of Defense.

Artificial Intelligence 280

Artificial Intelligence Access IT Government 280

Security Affairs

AUGUST 10, 2023

US CISA added zero-day vulnerability CVE-2023-38180 affecting.NET and Visual Studio to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added an actively exploited zero-day vulnerability CVE-2023-38180 (CVSS score 7.5) The vulnerability impacts Visual Studio 2022 versions 17.2,

IT 92

IT Cybersecurity Risk Security 92

Security Affairs

JANUARY 25, 2023

Below are the flaws reported by the researchers: [$16000][ 1376354 ] High CVE-2023-0471: Use after free in WebTransport. Reported by chichoo Kim(chichoo) and Cassidy Kim(@cassidy6564) on 2022-10-19 [$3000][1405256] High CVE-2023-0472: Use after free in WebRTC. Reported by avaue at S.S.L

Security 87

Security IT Information Security 87

Security Affairs

JANUARY 3, 2024

Below is the list of the issues added to the catalog: CVE-2023-7024 – The vulnerability is a Heap buffer overflow issue in WebRTC. The flaw was reported by Clément Lecigne and Vlad Stolyarov of Google’s Threat Analysis Group on 2023-12-19 and fixed in just one day. At the time of this writing the issue has yet to be addressed.

Libraries 110

Libraries IT Cybersecurity Risk 110

Security Affairs

NOVEMBER 1, 2023

US CISA added two vulnerabilities, tracked as CVE-2023-46747 and CVE-2023-46748, in BIG-IP to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerabilities CVE-2023-46747 and CVE-2023-46748 in BIG-IP to its Known Exploited Vulnerabilities catalog.

IT 110

IT Authentication Access Cybersecurity 110

Security Affairs

OCTOBER 5, 2023

Cybersecurity and Infrastructure Security Agency (CISA) added the JetBrains TeamCity flaw CVE-2023-42793 (CVSS score: 9.8) and Windows bug CVE-2023-28229 (CVSS score: 7.0) Below are the descriptions of the two vulnerabilities: CVE-2023-42793 JetBrains TeamCity Authentication Bypass Vulnerability.

IT 110

IT Authentication Cybersecurity Risk 110

Security Affairs

DECEMBER 11, 2023

Below is the list of the issues added to the catalog: CVE-2023-41265 (CVSS score 9.6)- Qlik Sense HTTP Tunneling Vulnerability: Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software. Last week the U.S.

IT 100

IT Cybersecurity Ransomware Risk 100

Security Affairs

JANUARY 11, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added an Ivanti Connect Secure and Policy Secure flaws, tracked as CVE-2024-21887 and CVE-2023-46805 , and Microsoft SharePoint Server flaw CVE-2023-29357 to its Known Exploited Vulnerabilities (KEV) catalog. The flaw CVE-2023-46805 (CVSS score 8.2)

IT 109

IT Authentication Cybersecurity Security 109

Security Affairs

JANUARY 24, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added an Atlassian Confluence Data Center and Server Template Injection bug, tracked as CVE-2023-22527 , to its Known Exploited Vulnerabilities (KEV) catalog. 5, 2023 as well as 8.4.5 Customers using an affected version must take immediate action.” Data Center only), and 8.7.1

IT 108

IT Cybersecurity Risk Security 108

Security Affairs

JANUARY 18, 2024

CVE-2023-6548 – Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability. CVE-2023-6549 – Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability. The vulnerability CVE-2023-6548 is an authenticated (low privileged) remote code execution affecting Management Interface.

IT 117

IT Authentication Cloud Access 117

Security Affairs

JANUARY 23, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added a VMware vCenter Server Out-of-Bounds Write bug, tracked as CVE-2023-34048 , to its Known Exploited Vulnerabilities (KEV) catalog. In October, VMware addressed the flaw CVE-2023-34048 (CVSS score 9.8). reads the report published by Mandiant.

IT 116

IT Cybersecurity Cloud Risk 116

Security Affairs

DECEMBER 1, 2023

The two issues are: CVE-2023-6345 Google Skia Integer Overflow Vulnerability CVE-2023-49103 ownCloud graphapi Information Disclosure Vulnerability CVE-2023-6345 – The CVE-2023-5217 is a high-severity integer overflow in Skia. CISA orders federal agencies to fix these vulnerabilities by December 21, 2023.

IT 94

IT Libraries Cybersecurity Passwords 94

Security Affairs

FEBRUARY 12, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added a Roundcube Webmail Persistent Cross-Site Scripting (XSS) vulnerability, tracked as CVE-2023-43770 , to its Known Exploited Vulnerabilities (KEV) catalog. ESET reported the zero-day to Roundcube, and the company patched the issue on October 14 th , 2023. x before 1.5.4,

IT 108

IT Cybersecurity Risk Access 108

Security Affairs

MARCH 25, 2024

CVE-2023-48788 Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability CVE-2019-7256 Nice Linear eMerge E3-Series OS Command Injection Vulnerability CVE-2023-48788 (CVSS score 9.3)

IT 120

IT Cloud Cybersecurity Security 120

Security Affairs

MAY 2, 2024

The issue, tracked as CVE-2023-7028 (CVSS score: 10.0), is an account takeover via Password Reset. Cybersecurity and Infrastructure Security Agency (CISA) added a GitLab Community and Enterprise Editions improper access control vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. prior to 16.1.6, prior to 16.2.9,

IT 116

IT Passwords Access Cybersecurity 116

Security Affairs

OCTOBER 20, 2023

” According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities , FCEB agencies have to address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.

IT 117

IT Authentication Access Cybersecurity 117

Security Affairs

SEPTEMBER 11, 2023

The two flaws, tracked as CVE-2023-41064 and CVE-2023-41061 , were used to install NSO Group’s Pegasus spyware on iPhones. The two Apple zero-day vulnerabilities , tracked as CVE-2023-41064 and CVE-2023-41061, reside in the Image I/O and Wallet frameworks. April 2023 – CVE-2023-28206 and CVE-2023-28205.

Cybersecurity 115

Cybersecurity Risk Security IT 115

Security Affairs

FEBRUARY 15, 2024

pic.twitter.com/AZasBtG2Ot — Trend Micro Research (@TrendMicroRSRCH) February 13, 2024 The popular researcher Will Dormann speculates that CVE-2024-21412 results from the partial fix of the vulnerability CVE-2023-36025. The fix for CVE-2023-36025 didn’t consider the case where a.URL file points to a.URL file, Dormann explained.

IT 111

IT Cybersecurity Information Security Security 111

Security Affairs

SEPTEMBER 9, 2023

US CISA added critical vulnerability CVE-2023-33246 in Apache RocketMQ to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added a critical flaw CVE-2023-33246 (CVSS score 9.8) “ CVE-2023-33246 is an easy to exploit vulnerability affecting Apache RocketMQ.

IT 108

IT Cybersecurity Risk Security 108

Security Affairs

NOVEMBER 9, 2023

US CISA added the vulnerability CVE-2023-29552 in the Service Location Protocol (SLP) to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2023-29552 (CVSS score: 7.5) CISA orders federal agencies to fix this flaw by November 29, 2023.

IT 108

IT Cybersecurity Risk Security 108

Security Affairs

MARCH 16, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Adobe ColdFusion, tracked as CVE-2023-26360 (CVSS score: 8.6), to its Known Exploited Vulnerabilities Catalog. Adobe is aware that CVE-2023-26360 has been exploited in the wild in very limited attacks targeting Adobe ColdFusion.”

Cybersecurity 95

Cybersecurity Risk Security Access 95

Security Affairs

AUGUST 22, 2023

US CISA added critical vulnerability CVE-2023-26359 in Adobe ColdFusion to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added a critical flaw CVE-2023-26359 (CVSS score 9.8) CISA orders federal agencies to fix this flaw by September 11, 2023.

IT 88

IT Cybersecurity Risk Security 88

Security Affairs

JANUARY 16, 2024

The flaw has been reported by Toan (suto) Pham of Qrious Secure on 2024-01-06 [$1000][ 1507412 ] High CVE-2024-0518: Type Confusion in V8. Google also fixed the following vulnerabilities: [$16000][ 1515930 ] High CVE-2024-0517: Out of bounds write in V8.

Security 117

Security Access IT Information Security 117

Security Affairs

SEPTEMBER 28, 2023

According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities , FCEB agencies have to address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.

IT 112

IT Cybersecurity Risk Security 112

Security Affairs

SEPTEMBER 22, 2023

US CISA added the flaw CVE-2023-41179 in Trend Micro Apex and other security products to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added the high-severity flaw CVE-2023-41179 (CVSS score 7.2) CISA orders federal agencies to fix this flaw by October 12, 2023.

IT 111

IT Security Authentication Risk 111