vulnerabilities Trio of unauthenticated ServiceNow vulnerabilities exposed 42,000 CVE-2024-4879 (CVSS 9.8) lets “an unauthenticated user remotely execute code” -- ServiceNow swiftly pushed fix to hosted instances but those self-hosting must...
vulnerabilities Fake OpenSSH "exploit" is a real exploit. Just not the one you thought. Cisco says 42 products confirmed exposed to CVE-2024-6387 -- but OpenSSH exploit is malicious: Beware bogus POCs says Kaspersky
OpenSSH Pre-auth RCE to root in OpenSSH server: 700,000 instances exposed RHEL 9 affected, Debian, Ubuntu, SUSE push fixes
Cybersecurity Feds to CIOs: Actively ask your vendors if they’ve done a SQLi audit... Fix up, look sharp: Uncle Sam is running out of patience with tech firms shipping insecure software. Vendors? Get familiar with the phrase "query parameterization"...
vulnerabilities How the NVD backlog highlights the need for context in vulnerability management "A Vulnerability Operations Centre (VOC) approach can work wonders here..."
vulnerabilities Microsoft updates mitigation for critical “wormable” bug 256,000 devices believed publicly exposed. But are MSMQ bugs really attacked in the wild?
Fortinet 20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence "It is important that organizations practice the ‘assume breach’ principle..." YARA rules, hashes etc. available for defenders.
SolarWinds “Trivially exploitable” bug in SolarWinds file server needs prompt fixing “CVE-2024-28995 is not known to be exploited in the wild as of 9 AM ET on June 11. We expect this to change."
vulnerabilities Check Point vulnerability far worse than thought – exploited in wild since April 106,000 customers publicly exposed, initial searches suggest.
Cybersecurity Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database Update comes after CISA started enriching CVEs itself…
Cybersecurity Root, but no response: 6 pre-auth RCEs in VMware ignored "Six exploits, no configuration needed, no ports need to get opened; just straight-up RCEs, no fuss, no muss."
Ivanti Gird your loins, there’s a new pre-auth RCE in Ivanti boxes landing "Code execution in 0 seconds (3 seconds to be more accurate), no limitation, no authentication..."
NVD As NVD flatlines, cybersecurity professionals call for urgent action Consortium plans “doomed” as rumours swirl over vulnerability database program borkage.
VPN PAN-OS vuln mitigation howler: “Disabling telemetry” no help POCs for CVSS 10 bug are out of the bag, tens of thousands are exposed, and telemetry mitigation didn't work.
VPN Palo Alto Networks: CVSS 10 bug in Pan-OS is being exploited in the wild Patch? You'll need to wait until Sunday. Turn off telemetry (no, really; it's a mitigation!) and go to the pub. OK, maybe don't.
xz-utils xz-utils Github repository disabled as Linux maintainers assess blast radius of backdoor, earlier commits Incident suggests a state actor exploiting overstretched maintainer of an "unpaid hobby project"
Ubuntu Password-leaking Ubuntu bug sat silent for 11 years A newly-discovered Linux bug could allow for password leaks. Worse yet, it has sat undiscovered in the OS for the last 11 years
Fortinet Fortinet warns on critical SQL Injection bug after NCSC disclosure More pre-auth RCE bugs in Fortinet appliances? Colour us shocked!
Cybersecurity CI/CD platform TeamCity exposed to critical pre-auth RCE bug, amid disclosure spat JetBrains' platform "a suitable vector to position an attacker to perform a supply chain attack" if compromised warns Rapid7.
ConnectWise Leaked LockBit malware deployed in ScreenConnect attacks – 600+ IPs seen attacking 8,200 instances "The executable in question was built using the LockBit 3 ransomware builder tool leaked in 2022, so this particular sample may not have originated with the actual LockBit developers"
vulnerabilities CVSS 10 ConnectWise vulnerability “extremely trivial to reverse and exploit” as POC lands, attacks start "There might be active exploitation attempts across common AWS IP space"
Members only Patch Tuesday February’s Patch Tuesday brings exploited zero days, Exchange Server headaches As a major Exchange Service update lands, Redmond admits "it is possible that some functionality may break after installing CU14..."
Ivanti Ivanti 0day fest continues with fresh bugs, attacks, as CISA tells federal agencies "just disconnect" "Threat actors have recently developed workarounds to current mitigations and detection methods and have been able to exploit weaknesses, move laterally, and escalate privileges without detection..."
vulnerabilities Exploit released for fresh Fortra GoAnywhere bug: CVSS 9.8 and again, nasty. Patch up. A 10-line exploit is now widely available. Unpatched instances *will* come under attack.
vulnerabilities vCenter Server vulnerability went exploited for two years unnoticed. Attacks are ongoing There are no workarounds that remove the vulnerability, which allows unauthenticated remote command execution on vulnerable systems. A patch is available.