ProxyNotShell, OWASSRF, TabShell: Patch Your Microsoft Exchange Servers Now
January 31, 2023Several flaws in Microsoft Exchange Server disclosed over the last two years continue to be valuable exploits for attackers as part of ransomware and targeted attacks against organizations that have yet to patch their systems. Patching the flaws outlined below is strongly recommended.
Sandworm APT Deploys New SwiftSlicer Wiper Using Active Directory Group Policy
January 27, 2023Sandworm, the Russian-backed APT responsible for NotPetya in 2017, has recently attacked an Ukrainian organization using a new wiper, SwiftSlicer.
Oracle January 2023 Critical Patch Update Addresses 183 CVEs
January 19, 2023Oracle addresses 183 CVEs in its first quarterly update of quarterly with 327 patches, including 71 critical updates.
Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)
January 10, 2023Microsoft addresses 98 CVEs including a zero-day vulnerability that was exploited in the wild.
CVE-2022-47523: ManageEngine Password Manager Pro, PAM360 and Access Manager Plus SQL Injection Vulnerability
January 5, 2023Zoho patches a newly disclosed high-severity SQL injection flaw in several ManageEngine products; attackers have historically targeted several ManageEngine products over the last three years.
CVE-2022-47939: Critical RCE Vulnerability in Linux Kernel
December 29, 2022A critical remote code execution vulnerability in the Linux kernel has been publicly disclosed by Trend Micro's Zero Day Initiative in its ZDI-22-1690 advisory. The vulnerability has been given a CVSSv3 of 10.0. There are no reports of active exploitation.
CVE-2022-37958: FAQ for Critical Microsoft SPNEGO NEGOEX Vulnerability
December 21, 2022Microsoft recently reclassified a vulnerability in SPNEGO NEGOEX, originally patched in September, after a security researcher discovered that it can lead to remote code execution. Organizations are urged to apply these patches as soon as possible.
Microsoft’s December 2022 Patch Tuesday Addresses 48 CVEs (CVE-2022-44698)
December 13, 2022Microsoft addresses 48 CVEs including two zero-day vulnerabilities, one that has been exploited in the wild (CVE-2022-44698) and one that was publicly disclosed prior to a patch being available (CVE-2022-44710).
CVE-2022-27518: Unauthenticated RCE in Citrix ADC and Gateway
December 13, 2022Citrix has patched a critical remote code execution vulnerability in its Gateway and ADC products. This vulnerability has reportedly been exploited as a zero day; organizations should patch urgently.
CVE-2022-42475: Fortinet Patches Zero Day in FortiOS SSL VPNs
December 12, 2022Fortinet has patched a zero day buffer overflow in FortiOS that could lead to remote code execution. There has been a report of active exploitation and organizations should patch urgently.
CVE-2022-27510: Critical Citrix ADC and Gateway Authentication Bypass Vulnerability
November 9, 2022Citrix publishes an advisory to address multiple flaws in its ADC and Gateway products, including a critical vulnerability.
Microsoft’s November 2022 Patch Tuesday Addresses 62 CVEs (CVE-2022-41073)
November 8, 2022Microsoft addresses 62 CVEs including four zero-day vulnerabilities that were exploited in the wild.