EUVD-2023-29951

Malicious code in bioql PyPI...

EUVD-2023-29952

Malicious code in bioql PyPI...

CVE-2023-26078

Privilege escalation vulnerability was discovered in Atera Agent 1.8.4.4 and prior on Windows due to mishandling of privileged APIs...

CVE-2023-26077

Atera Agent through 1.8.3.6 on Windows Creates a Temporary File in a Directory with Insecure Permissions...

Ukrainian Institutions Targeted Using HATVIBE and CHERRYSPY Malware

The Computer Emergency Response Team of Ukraine CERT-UA has alerted of a spear-phishing campaign that targeted a scientific research institution in the country with malware known as HATVIBE and CHERRYSPY. The agency attributed the attack to a threat actor it tracks under the name UAC-0063, which...

Iranian Hackers Deploy New BugSleep Backdoor in Middle East Cyber Attacks

The Iranian nation-state actor known as MuddyWater has been observed using a never-before-seen backdoor as part of a recent attack campaign, shifting away from its well-known tactic of deploying legitimate remote monitoring and management RMM software for maintaining persistent access. That's...

Atera Agent Installed (Windows)

Binary data ateraagentwininstalled.nbin...

CVE-2023-26077

Atera Agent through 1.8.3.6 on Windows Creates a Temporary File in a Directory with Insecure Permissions...

CVE-2023-26077

Atera Agent through 1.8.3.6 on Windows Creates a Temporary File in a Directory with Insecure Permissions...

CVE-2023-26077

Atera Agent through 1.8.3.6 on Windows Creates a Temporary File in a Directory with Insecure Permissions...

CVE-2023-26078

Privilege escalation vulnerability was discovered in Atera Agent 1.8.4.4 and prior on Windows due to mishandling of privileged APIs...

Privilege escalation

Privilege escalation vulnerability was discovered in Atera Agent 1.8.4.4 and prior on Windows due to mishandling of privileged APIs...

CVE-2023-26077

Atera Agent through 1.8.3.6 on Windows Creates a Temporary File in a Directory with Insecure Permissions...

CVE-2023-26077

Atera Agent through 1.8.3.6 on Windows Creates a Temporary File in a Directory with Insecure Permissions...

PT-2023-20474 · Atera · Atera Agent

Name of the Vulnerable Software and Affected Versions: Atera Agent versions 1.8.4.4 and prior Description: A privilege escalation issue was discovered due to the mishandling of privileged APIs. This issue affects Atera Agent on Windows. Recommendations: For Atera Agent versions 1.8.4.4 and prior,...

PT-2023-20473 · Atera · Atera Agent

Name of the Vulnerable Software and Affected Versions: Atera Agent versions 1.8.3.6 and earlier Description: The issue is related to the creation of a temporary file in a directory with insecure permissions. This occurs in Atera Agent on Windows. Recommendations: For Atera Agent versions 1.8.3.6...

CVE-2023-26078

Privilege escalation vulnerability was discovered in Atera Agent 1.8.4.4 and prior on Windows due to mishandling of privileged APIs...

CVE-2023-26078

CVE-2023-26078 affects Atera Agent for Windows (versions 1.8.4.4 and earlier). Root cause: mishandling of privileged APIs in the MSI installer’s repair functionality, enabling local privilege escalation by executing tasks under NT AUTHORITY\SYSTEM (with potential DLL hijacking as discussed in pub...

CVE-2023-26078

Privilege escalation vulnerability was discovered in Atera Agent 1.8.4.4 and prior on Windows due to mishandling of privileged APIs...

Atera Agent 安全漏洞

Atera Agent is the basis for an Atera monitoring system from Atera Corporation. A security vulnerability exists in Atera Agent version 1.8.3.6 and earlier, which originates from the ability to create temporary files in directories with insecure permissions...