✨ CVE-2022-37958:
Critical Windows code-execution vulnerability went undetected until now
▶️ Potential to rival EternalBlue
▶️ Wormable
▶️ Unlike EternalBlue, Vulnerability present in a much broader range of network protocols
▶️ Good news: patch was released in September. hopefully all of us applied it
#infosec #eternalblue #patching #securityadvisory #sysadmin #blueteam #windowsvulnerability
#infosec #eternalblue #patching #securityadvisory #sysadmin #blueteam #windowsvulnerability
The WA SOC has observed 4 new vulnerabilities affecting Microsoft Windows applications and services, notably CVE-2022-41128 has a CVSSv3 of 8.8.
https://wagov.github.io/wasocshared/#/advisories/20221110002-Microsoft-multiple-advisories.md
The WA SOC has observed 3 new vulnerabilities affecting Citrix ADC and gateway products, notably CVE-2022-27510 has a CVSSv3 of 9.8. Appliances that have enabled SSL VPN functionality or are using ICA Proxy services have an authentication bypass vulnerability, that could be exploited for initial access.
https://wagov.github.io/wasocshared/#/advisories/20221110001-citrix-gateway-security-bulletin.md
#securityadvisory
SEO poisoning targeting public sector (Gootloader) Advisory - 20221028001
https://wagov.github.io/wasocshared/#/advisories/20221028001-seopoisoning-gootloader-advisory.md
Just a little something to worry about in the morning. https://www.openssl.org/news/secadv/20220705.txt Just when you thought you were being safe with 2048 #openssl #securityadvisory
#Qualys #SecurityAdvisory
> #Sequoia: A deep root in #Linux's #filesystem layer (#CVE-2021-33909)
> by creating, mounting, and deleting a deep
directory structure whose total path length exceeds 1GB [...]
> We [...] obtained full #root privileges on default installations
https://www.openwall.com/lists/oss-security/2021/07/20/1
#eBPF #infosec
#infosec #ebpf #root #cve #filesystem #linux #sequoia #securityadvisory #qualys
#SecurityAdvisory #Infosec
> #Google Compute Engine (#GCE) VM takeover via #DHCP flood - gain root access by getting #SSH keys added by google_guest_agent
https://github.com/irsl/gcp-dhcp-takeover-code-exec
#ssh #dhcp #gce #google #infosec #securityadvisory
#InfoSec #SecurityAdvisory
"Yesterday a patchset was merged to #Linux #Kernel mainline, which could be used to execute code in the kernel due to bugs in #PI #futexes."
https://www.openwall.com/lists/oss-security/2021/01/29/1
"commit is from 2008. So probably all currently maintained #Linux distros and deployments are affected, unless something else mitigated the issue in some kernel versions."
https://www.openwall.com/lists/oss-security/2021/01/29/3
#futexes #pi #kernel #linux #securityadvisory #infosec
#Qualys #SecurityAdvisory #InfoSec
Heap-based buffer overflow in #Sudo (#CVE-2021-3156)
"This #vulnerability:
- is #exploitable by any local user (normal users and system users, sudoers and non-sudoers), without #authentication (i.e., the attacker does not need to know the user's password);
- was introduced in July 2011"
https://www.openwall.com/lists/oss-security/2021/01/26/3
#authentication #exploitable #vulnerability #cve #sudo #infosec #securityadvisory #qualys
Feds: K-12 Cyberattacks Dramatically on the Rise - Attackers are targeting students and faculty alike with malware, phishing, DDoS, Zoom bombs and mo... https://threatpost.com/feds-k12-cyberattacks-rise/162202/ #cybersecurityandinfrastructuresecurityagency #distancelearning #securityadvisory #vulnerabilities #remotelearning #cyberattacks #websecurity #government #ransomware #education #phishing #zoombomb #malware #schools #edtech #alert #cisa #ddos #k-12 #fbi
#fbi #k #ddos #cisa #alert #edtech #schools #malware #ZoomBomb #phishing #education #ransomware #government #websecurity #cyberattacks #remotelearning #vulnerabilities #securityadvisory #distancelearning #cybersecurityandinfrastructuresecurityagency
VMware Rolls a Fix for Formerly Critical Zero-Day Bug - VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to... https://threatpost.com/vmware-fix-critical-zero-day-bug/161896/ #securityvulnerability #privilegeescalation #commandinjection #securityadvisory #vulnerabilities #severityrating #cve-2020-4006 #cybersecurity #workaround #cisaalert #critical #zeroday #vmware #patch #nsa
#nsa #patch #vmware #zeroday #critical #cisaalert #workaround #cybersecurity #cve #severityrating #vulnerabilities #securityadvisory #commandinjection #privilegeescalation #securityvulnerability
Colossal Intel Update Anchored by Critical Privilege-Escalation Bugs - Intel released 40 security advisories in total, addressing critical- and high-severity flaws acros... https://threatpost.com/intel-update-critical-privilege-escalation-bugs/161087/ #activemanagementtechnology #intelwirelessbluetooth #nextunitcomputing #securityadvisory #vulnerabilities #cve-2020-12321 #cve-2020-8752 #intel #amt #nuc
#nuc #amt #intel #cve #vulnerabilities #securityadvisory #nextunitcomputing #intelwirelessbluetooth #activemanagementtechnology
Citrix Bugs Allow Unauthenticated Code Injection, Data Theft - Admins should patch their Citrix ADC and Gateway installs immediately. more: https://threatpost.com/citrix-bugs-allow-unauthenticated-code-injection-data-theft/157214/ #informationdisclosure #criticaladvisory #securityadvisory #vulnerabilities #denialofservice #codeinjection #cve-2020-8187 #cve-2020-8190 #cve-2020-8191 #cve-2020-8193 #cve-2020-8194 #cve-2020-8195 #cve-2020-8196 #cve-2020-8197 #cve-2020-8198 #cve-2020-8199 #adc
#adc #cve #codeinjection #denialofservice #vulnerabilities #securityadvisory #criticaladvisory #informationdisclosure
Cisco IP Phone Harbors Critical RCE Flaw - Cisco stomped out a critical vulnerability in its IP Phone web server that could enable remote cod... more: https://threatpost.com/critical-cisco-ip-phone-rce-flaw/154864/ #unifiedcomputingsystem #securityvulnerability #remotecodeexecution #securityadvisory #vulnerabilities #denialofservice #securityupdate #cve-2020-3161 #criticalflaw #websecurity #ciscopatch #ciscoflaw #webserver #ipphones #ipphone #patches #cisco #bug
#bug #cisco #patches #ipphone #ipphones #webserver #ciscoflaw #ciscopatch #websecurity #criticalflaw #cve #securityupdate #denialofservice #vulnerabilities #securityadvisory #remotecodeexecution #securityvulnerability #unifiedcomputingsystem
Cisco ‘Critical Update’ Phishing Attack Steals Webex Credentials - Emails purporting to be a Cisco "critical security advisory" are actually part of a phishing campa... more: https://threatpost.com/cisco-critical-update-phishing-webex/154585/ #ciscocriticalupdate #ciscovulnerability #securityadvisory #phishingattack #cloudsecurity #websecurity #credentials #criticalbug #landingpage #ciscowebex #phishing #cofense #cisco #email #webex
#webex #email #cisco #cofense #phishing #ciscowebex #landingpage #criticalbug #credentials #websecurity #cloudsecurity #phishingattack #securityadvisory #ciscovulnerability #ciscocriticalupdate