vulnerabilities
Trio of unauthenticated ServiceNow vulnerabilities exposed 42,000
CVE-2024-4879 (CVSS 9.8) lets “an unauthenticated user remotely execute code” -- ServiceNow swiftly pushed fix to hosted instances but those self-hosting must...
vulnerabilities
Fake OpenSSH "exploit" is a real exploit. Just not the one you thought.
Cisco says 42 products confirmed exposed to CVE-2024-6387 -- but OpenSSH exploit is malicious: Beware bogus POCs says Kaspersky
OpenSSH
Pre-auth RCE to root in OpenSSH server: 700,000 instances exposed
RHEL 9 affected, Debian, Ubuntu, SUSE push fixes
Cybersecurity
Feds to CIOs: Actively ask your vendors if they’ve done a SQLi audit...
Fix up, look sharp: Uncle Sam is running out of patience with tech firms shipping insecure software. Vendors? Get familiar with the phrase "query parameterization"...
vulnerabilities
How the NVD backlog highlights the need for context in vulnerability management
"A Vulnerability Operations Centre (VOC) approach can work wonders here..."
vulnerabilities
Microsoft updates mitigation for critical “wormable” bug
256,000 devices believed publicly exposed. But are MSMQ bugs really attacked in the wild?
Fortinet
20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence
"It is important that organizations practice the ‘assume breach’ principle..." YARA rules, hashes etc. available for defenders.
SolarWinds
“Trivially exploitable” bug in SolarWinds file server needs prompt fixing
“CVE-2024-28995 is not known to be exploited in the wild as of 9 AM ET on June 11. We expect this to change."
vulnerabilities
Check Point vulnerability far worse than thought – exploited in wild since April
106,000 customers publicly exposed, initial searches suggest.
Cybersecurity
Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database
Update comes after CISA started enriching CVEs itself…
Cybersecurity
Root, but no response: 6 pre-auth RCEs in VMware ignored
"Six exploits, no configuration needed, no ports need to get opened; just straight-up RCEs, no fuss, no muss."
Ivanti
Gird your loins, there’s a new pre-auth RCE in Ivanti boxes landing
"Code execution in 0 seconds (3 seconds to be more accurate), no limitation, no authentication..."