Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the weeks ending Saturday, October 5, 12, 2024.
Microsoft Patch Tuesday – October 2024
Microsoft patched 117 CVEs in October 2024 Patch Tuesday release, with three rated critical, 113 rated important and one rated moderate.
- 27 Elevation of Privilege vulnerabilities
- 7 Security Feature Bypass vulnerabilities
- 43 Remote Code Execution vulnerabilities
- 6 Information Disclosure vulnerabilities
- 26 Denial of Service vulnerabilities
- 7 Spoofing vulnerabilities…..
WordPress Plugin GiveWP Bug CVE-2024-8353
A critical vulnerability has been discovered in the popular GiveWP donation plugin for WordPress, potentially allowing unauthenticated attackers to take complete control of affected websites.
The vulnerability, tracked as CVE-2024-8353 with a CVSS score of 10, is a PHP Object Injection vulnerability that occurs due to improper handling of untrusted input, specifically during the deserialization of several parameters, such as ‘give_title’ and ‘card_address’. This flaw allows unauthenticated attackers to inject a malicious PHP object into the system. The additional presence of a POP (Property Oriented Programming) chain allows attackers to leverage this vulnerability to delete arbitrary files and gain remote code execution on the target website……
SUBSCRIBE TO OUR BLOG TODAY !
We understand the importance of staying on top of the latest threats and vulnerabilities that can harm your digital life. You’ll receive the latest cybersecurity news, insights, resources, offers and analysis straight to your inbox every day
Kimsuky leaverages DMARC Misconfiguration in its Phishing Campaign
Security researchers from Barracuda has uncovered that the North Korean (APT) group Kimsuky has been leveraging DMARC misconfigurations to run highly targeted spear-phishing campaigns, threatening both private and public sectors globally.
Kimsuky, has been notorious for targeting think tanks, academia, and media outlets to gather intelligence on foreign policy and nuclear matters. The latest campaign involves exploiting poorly configured DMARC policies to spoof legitimate domains and deceive email recipients……
PoC for Microsoft Office Zeroday CVE-2024-38200 released
Security researcher Metin Yunus Kandemir have released the technical details and a PoC exploit that reveals a critical information disclosure flaw in Microsoft Office. This vulnerability, which affects multiple versions including Office 2016, Office 2019, Office LTSC 2021, and Microsoft 365 Apps for Enterprise,
The vulnerability tracked as CVE-2024-38200 is an information disclosure in Microsoft Office (multiple versions) that allows attackers to capture sensitive authentication data, such as NTLMv2 hashes, over HTTP and SMB protocols. By tricking the users into clicking a specially crafted link that leads to a malicious document hosted on a compromised or attacker-controlled website. Once the file is opened in vulnerable versions of Office, attackers can capture NTLMv2 hashes, a key element for launching NTLM Relay attacks on domain controllers…..
CISA adds Zimbra Vulnerability CVE-2024-45519 to its KEV Catalog
The US CISA has added Synacor Zimbra vulnerability to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation.
The vulnerability tracked as CVE-2024-45519 with a CVSS score of 10 is a command injection vulnerability in Zimbra Collaboration contains an unspecified vulnerability in the postjournal service that may allow an unauthenticated user to execute…..
CISA KEV Update Part III – October 2024
The US CISA has added below vulnerabilities to its Known exploited vulnerabilities catalog based on the evidence of active exploitation…..
This brings end of this week in review security coverage. Thanks for visiting TheCyberThrone. If you like us please follow us on Facebook, Twitter, Instagram
