Just because we all either have one or want one 😏

Fake FlipperZero sites promise free devices after completing offer https://www.bleepingcomputer.com/news/security/fake-flipperzero-sites-promise-free-devices-after-completing-offer/ #vuln #infosec #exploit #threatintel #security #tipper #socialengineering #humanhacking #hack

This one looks horrible:
A stack-based overflow vulnerability [CWE-124] in FortiOS & FortiProxy may allow a remote attacker to execute arbitrary code or command via crafted packets reaching proxy policies or firewall policies with proxy mode alongside SSL deep packet inspection.

FortiOS version 7.2.0 through 7.2.3
FortiOS version 7.0.0 through 7.0.10
FortiProxy version 7.2.0 through 7.2.2
FortiProxy version 7.0.0 through 7.0.9

https://www.fortiguard.com/psirt/FG-IR-23-183

#FortiGate #Vuln #CVSS #ArbExec

So many Ruby vulnerabilities seem to stem from using `Kernel.open()`. We should deprecate `open("|command-here")` and encourage Rubyists to use either `IO.popen()` or `URI.open()`.
https://45w1nkv.medium.com/ruby-code-vulnerability-analysis-confirmsnssubscription-rce-8a902d9afdd7
#ruby #security #vuln

🚨Windows ICMP RCE🚨

CVE-2023-23415 - Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

Released: Mar 14, 2023

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23415

#Vulnerability #Microsoft #RCE #CVE #Cyber #InfoSec #CyberSecurity #InformationSecurity #Vuln #ThreatIntel #Intel

#Git patches two critical remote code execution security flaws
 CVE-2022-41903: Heap overflow in `git archive`, `git log --format` leading to RCE

 CVE-2022-23521: When parsing gitattributes, multiple integer overflows can occur when there is a huge number of path patterns, a huge number of attributes for a single pattern, or when the declared attribute names are huge.

#github #patchmanagement #vuln

I didn't cover it in my post as it was a tangent (and I'm a sucker for those), but I think it's absolutely *wild* that #Friendica includes instance domain and build version in it's HTTP user-agent

> "Friendica 'Giant Rhubarb' 2023.03-dev-1502; https://<redacted instance domain>"

If someone were looking to exploit a Friendica #vuln the access logs of any other instance provide a useful way to find targets - once you've popped one, it's logs will tell you all it's friends and their versions

CISA adds JasperReports vulnerabilities to its Known Exploited Vulnerabilities Catalog - Cyware via CyberNews on iOS CISA adds JasperReports vulnerabilities to its Known Exploited Vulnerabilities Catalog - Cyware via CyberNews on iOS
https://securityaffairs.com/140131/security/known-exploited-vulnerabilities-catalog-jasperreports.html?&web_view=true #cybersec #vuln

Google Releases Open-Source Vulnerability Scanning Tool
https://www.infoq.com/news/2022/12/google-osv-scanner/

#OSV-Scanner #google #scan #vuln

Researcher Matthew Rutledge found an #XSS #vulnerability in FlowScreenComponents BasePack library version 3.0.7.

An attacker could exploit this #vuln to perform actions in the context of the affected users. The impact of this vulnerability includes taking over targeted users’ sessions. Additional impact depends on the functionality of the affected application.

To resolve this issue, restrict user access to the page with the vulnerability until an updated version of the library without the vulnerability is released.

See the full story in our technical advisory ⬇

https://bishopfox.com/blog/flowscreencomponents-advisory

I have discovered a forced browsing vulnerabilty in the #Thailand #TDS exams page that allows you to get the answers from the exams, and also submit scores in someone else's place.
#thai #CyberSecurity #vuln

I have discovered a forced browsing vulnerabilty in the #Thailand #TDS exams page that allows you to get the answers from the exams, and also submit scores in someone else's place.
#thai #CyberSecurity #vuln

Finally (!!!) I was able to publish these vulns I found on Arcadyan Routers (distributed by many ISPs in the world including Telmex/Infinitum). It ain't much but it is honest work. :ablobcatwave:​

https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce

#IoT #Routers #Arcadyan #vulnerabilities #vuln #vulnerability

Finally (!!!) I was able to publish these vulns I found on Arcadyan Routers (distributed by many ISPs in the world including Telmex/Infinitum). It ain't much but it is honest work. :ablobcatwave:​

https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce

#IoT #Routers #Arcadyan #vulnerabilities #vuln #vulnerability

[#Vuln] [#SPENGO] [#PatchNow] Back in September 2022 a critical Microsoft vulnerability in the SPNEGO Extended Negotiation (#NEGOEX) Security Mechanism was disclosed.

Most recently, IBM X-Force Security Researcher, Valentina Palmiotti (@chompie), discovered that exploitation of this vulnerability could allow an attacker to remotely execute arbitrary code.

Due to that discovery, Microsoft has now classified this vulnerability as “Critical.” Test and patch ASAP. Original CVE: CVE-2022-37958 | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37958

CISO ISE vuln can be chained in one click exploit. https://www.itsecuritynews.info/cisco-ise-vulnerabilities-can-be-chained-in-one-click-exploit/ #Cisco #vulnerabilitymanagement #vuln

#Tailscale was notified of a security #vuln in their client and recommending everyone to update to v1.32.3 (stable channel) as soon as possible.

Here is a link to the security bulletins page: https://tailscale.com/security-bulletins/?utm_content=2022-11-21+-+Upgrade+Windows+clients+to+v1.32.3+or+later&utm_medium=email_action&utm_source=customer.io

Critical RCE Flaw Reported in #Spotify Backstage Software Catalog and Developer Platform This is CVE-2022-36067 - Sandbreak (CVSS Score: 9.8): https://nvd.nist.gov/vuln/detail/CVE-2022-36067 | #vuln #riskmitigation

https://nvd.nist.gov/vuln/detail/CVE-2022-39144 #security #attack #cyberattack #vuln #patch #vmware

[#Vuln] For those tracking the upcoming release of a new version of #OpenSSL, version 3.0.7, which contains a patch for an undisclosed critical rated vulnerability in current versions of the technology. The Open SSL Project will be releasing the update on Tuesday, November 1st. Preparations should be made to adopt this update as soon as possible due to its critical nature and potential risk. Details on the vuln have not been released yet to hinder weaponization. https://www.zdnet.com/article/openssl-warns-of-critical-security-vulnerability-with-upcoming-patch | #infosec #cybersecurity #encryption

You should prepare for the OpenSSL 3.x secvuln

https://xeiaso.net/blog/openssl-3.x-secvuln-incoming

#blogpost #openssl #vuln #noxp @cadey