Oracle Reports Servlet Arbitrary File Read
An unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4, 11.1.1.6, and 11.1.2.0 can allow a remote attacker to use this vulnerability to read or write arbitrary files on the system, ultimately leading to remote code...
7.7AI Score
Important Photon OS Security Update - PHSA-2024-5.0-0245
Updates of ['wireshark', 'linux-secure', 'linux-rt', 'linux'] packages of Photon OS have been...
9.8CVSS
9.9AI Score
0.001EPSS
Security Bulletin: IBM Disconnected Log Collector includes components with known vulnerabilities
Summary The product includes vulnerable components (e.g., framework libraries) that may be identified and exploited with automated tools. This update addresses these CVEs. Vulnerability Details ** CVEID: CVE-2023-39410 DESCRIPTION: **Apache Avro Java SDK could allow a remote authenticated...
10CVSS
9.6AI Score
0.732EPSS
Issue Overview: Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c. (CVE-2024-26458) Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c. (CVE-2024-26461) Affected Packages: krb5 Note: This advisory is...
7.2AI Score
0.0004EPSS
VMware Spring Framework < 5.3.34, 6.0.x < 6.0.19, 6.1.x < 6.1.6 SSRF Vulnerability - Windows
The VMware Spring Framework is prone to a server-side request forgery (SSRF)...
8.1CVSS
8AI Score
0.0004EPSS
Important Photon OS Security Update - PHSA-2024-4.0-0591
Updates of ['bluez', 'linux-aws', 'iperf', 'nghttp2', 'linux-rt', 'util-linux', 'linux-secure', 'httpd', 'linux'] packages of Photon OS have been...
9.8CVSS
10AI Score
0.005EPSS
RHEL 7 : X.Org server (RHSA-2024:1785)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1785 advisory. X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical...
7.8CVSS
8.1AI Score
0.0005EPSS
Important Photon OS Security Update - PHSA-2024-3.0-0748
Updates of ['httpd'] packages of Photon OS have been...
9.8CVSS
8.5AI Score
0.005EPSS
Important Photon OS Security Update - PHSA-2024-5.0-0243
Updates of ['nodejs', 'openssl'] packages of Photon OS have been...
9.8CVSS
10AI Score
0.001EPSS
VMware Spring Framework < 5.3.34, 6.0.x < 6.0.19, 6.1.x < 6.1.6 SSRF Vulnerability - Linux
The VMware Spring Framework is prone to a server-side request forgery (SSRF)...
8.1CVSS
8AI Score
0.0004EPSS
RHEL 7 : squid (RHSA-2024:1787)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1787 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fix(es): *...
8.6CVSS
8.3AI Score
0.019EPSS
Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities
Summary QRadar Suite Software includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version. Vulnerability Details **...
10CVSS
8.9AI Score
0.024EPSS
Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included
Microsoft has released security updates for the month of April 2024 to remediate a record 149 flaws, two of which have come under active exploitation in the wild. Of the 149 flaws, three are rated Critical, 142 are rated Important, three are rated Moderate, and one is rated Low in severity. The...
9CVSS
9AI Score
0.005EPSS
AMD Radeon DirectX 11 Driver atidxx64.dll Shader Functionality arbitrary write vulnerability
Talos Vulnerability Report TALOS-2023-1847 AMD Radeon DirectX 11 Driver atidxx64.dll Shader Functionality arbitrary write vulnerability April 10, 2024 CVE Number CVE-2024-21979 SUMMARY An arbitrary write vulnerability exists in the Shader Functionality of AMD Radeon DirectX 11 Driver atidxx64.dll.....
5.3CVSS
7.7AI Score
0.0004EPSS
AMD Radeon DirectX 11 Driver atidxx64.dll Shader Functionality arbitrary write vulnerability
Talos Vulnerability Report TALOS-2023-1848 AMD Radeon DirectX 11 Driver atidxx64.dll Shader Functionality arbitrary write vulnerability April 10, 2024 CVE Number CVE-2024-21972 SUMMARY An arbitrary write vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.dll.....
5.3CVSS
7.6AI Score
0.0004EPSS
Important Photon OS Security Update - PHSA-2024-5.0-0242
Updates of ['nghttp2', 'linux-rt', 'util-linux', 'linux-secure', 'httpd', 'linux'] packages of Photon OS have been...
9.8CVSS
10AI Score
0.005EPSS
The Avada theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.11.6 via the '/wp-content/uploads/fusion-forms/' directory. This makes it possible for unauthenticated attackers to extract sensitive data uploaded via an Avada created form with a....
5.3CVSS
5.5AI Score
0.001EPSS
The Avada theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.11.6 via the '/wp-content/uploads/fusion-forms/' directory. This makes it possible for unauthenticated attackers to extract sensitive data uploaded via an Avada created form with a....
5.3CVSS
5.2AI Score
0.001EPSS
The Avada theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.11.6 via the '/wp-content/uploads/fusion-forms/' directory. This makes it possible for unauthenticated attackers to extract sensitive data uploaded via an Avada created form with a....
5.3CVSS
5.4AI Score
0.001EPSS
Linux kernel on Intel systems is susceptible to Spectre v2 attacks
Overview A new cross-privilege Spectre v2 vulnerability that impacts modern CPU architectures supporting speculative execution has been discovered. CPU hardware utilizing speculative execution that are vulnerable to Spectre v2 branch history injection (BHI) are likely affected. An unauthenticated.....
6.5CVSS
6.8AI Score
EPSS
RHEL 7 : kernel (RHSA-2024:1249)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1249 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * (CVE-2024-26602, ?) * kernel:...
8.8CVSS
7.8AI Score
0.002EPSS
Important Photon OS Security Update - PHSA-2024-3.0-0747
Updates of ['bluez', 'linux-aws', 'linux-rt', 'util-linux', 'linux-secure', 'linux-esx', 'linux'] packages of Photon OS have been...
9.8CVSS
10AI Score
0.001EPSS
RHEL 7 : rh-varnish6-varnish (RHSA-2024:1689)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1689 advisory. Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and...
7.5AI Score
0.0004EPSS
Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws
Multiple China-nexus threat actors have been linked to the zero-day exploitation of three security flaws impacting Ivanti appliances (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893). The clusters are being tracked by Mandiant under the uncategorized monikers UNC5221, UNC5266, UNC5291, UNC5325,....
9.1CVSS
9.6AI Score
0.969EPSS
Summary IBM Storage Protect for Virtual Environments: Data Protection for VMware can be affected by security flaws in IBM Java, OpenSSL, and libcurl. The flaws can lead to denial of service, bypass security restrictions, confidentiality impact, integrity impact, availability impact, and sensitive.....
7.5CVSS
10AI Score
0.003EPSS
What’s New in Rapid7 Products & Services: Q1 2024 in Review
We kicked off 2024 with a continued focus on bringing security professionals (which if you're reading this blog, is likely you!) the tools and functionality needed to anticipate risks, pinpoint threats, and respond faster with confidence. Below we’ve highlighted some key releases and updates from.....
9.8CVSS
8.3AI Score
0.972EPSS
CoralRaider targets victims’ data and social media accounts
Cisco Talos discovered a new threat actor we're calling "CoralRaider" that we believe is of Vietnamese origin and financially motivated. CoralRaider has been operating since at least 2023, targeting victims in several Asian and Southeast Asian countries. This group focuses on stealing victims'...
6.8AI Score
Important Photon OS Security Update - PHSA-2024-5.0-0239
Updates of ['go'] packages of Photon OS have been...
9.8CVSS
8.5AI Score
0.001EPSS
Moderate Photon OS Security Update - PHSA-2024-4.0-0590
Updates of ['gnutls'] packages of Photon OS have been...
9.8CVSS
8.4AI Score
0.001EPSS
Important Photon OS Security Update - PHSA-2024-4.0-0589
Updates of ['go'] packages of Photon OS have been...
9.8CVSS
8.5AI Score
0.001EPSS
Important Photon OS Security Update - PHSA-2024-3.0-0746
Updates of ['go'] packages of Photon OS have been...
9.8CVSS
8.5AI Score
0.001EPSS
Moderate Photon OS Security Update - PHSA-2024-5.0-0240
Updates of ['gnutls'] packages of Photon OS have been...
9.8CVSS
8.4AI Score
0.001EPSS
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Very Good Plugins WP Fusion Lite allows Command Injection.This issue affects WP Fusion Lite: from n/a through...
9.9CVSS
9.4AI Score
0.0004EPSS
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Very Good Plugins WP Fusion Lite allows Command Injection.This issue affects WP Fusion Lite: from n/a through...
9.9CVSS
9.6AI Score
0.0004EPSS
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Very Good Plugins WP Fusion Lite allows Command Injection.This issue affects WP Fusion Lite: from n/a through...
9.9CVSS
9.8AI Score
0.0004EPSS
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Very Good Plugins WP Fusion Lite allows Command Injection.This issue affects WP Fusion Lite: from n/a through...
9.9CVSS
6.9AI Score
0.0004EPSS
Moderate Photon OS Security Update - PHSA-2024-5.0-0238
Updates of ['bluez'] packages of Photon OS have been...
9.8CVSS
8.4AI Score
0.001EPSS
HTTP/2 CONTINUATION frames can be utilized for DoS attacks
Overview HTTP allows messages to include named fields in both header and trailer sections. These header and trailer fields are serialised as field blocks in HTTP/2, so that they can be transmitted in multiple fragments to the target implementation. Many HTTP/2 implementations do not properly limit....
7.5CVSS
7.7AI Score
0.005EPSS
VMware SD-WAN Orchestrator contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information...
7.1CVSS
7.2AI Score
0.0004EPSS
VMware SD-WAN Orchestrator contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information...
7.1CVSS
6.8AI Score
0.0004EPSS
VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the malicious actor may be...
4.8CVSS
5AI Score
0.0004EPSS
VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the...
7.4CVSS
7.8AI Score
0.0004EPSS
VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the malicious actor may be...
4.8CVSS
7.2AI Score
0.0004EPSS
VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the...
7.4CVSS
7.8AI Score
0.0004EPSS
VMware SD-WAN Orchestrator contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information...
7.1CVSS
7AI Score
0.0004EPSS
VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the malicious actor may be...
4.8CVSS
5.3AI Score
0.0004EPSS
VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the...
7.4CVSS
8AI Score
0.0004EPSS
Adversaries are leveraging remote access tools now more than ever — here’s how to stop them
Remote system management/desktop access tools such as AnyDesk and TeamViewer have grown in popularity since 2020. While there are many legitimate uses for this software, adversaries are also finding ways to use them for command and control in their campaigns. There is no easy way to effectively...
7.3AI Score
Security Bulletin: Netcool Operations Insights 1.6.12 addresses multiple security vulnerabilities.
Summary Netcool Operations Insight v1.6.12 addresses multiple security vulnerabilities, listed in the CVEs below. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details ** CVEID: CVE-2022-25883 DESCRIPTION: **Node.js semver package is vulnerable to a...
10CVSS
10AI Score
0.732EPSS
China-linked Hackers Deploy New 'UNAPIMON' Malware for Stealthy Operations
A threat activity cluster tracked as Earth Freybug has been observed using a new malware called UNAPIMON to fly under the radar. "Earth Freybug is a cyberthreat group that has been active since at least 2012 that focuses on espionage and financially motivated activities," Trend Micro security...
7.8AI Score