Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the weeks ending Saturday, October 26, 2024.
Fortinet keeps quiet about a critical vulnerability
*****The vulnerability is CVE-2024-47575***** – A separate blogpost has been released late last week
Fortinet seems to keep a critical vulnerability under wraps for more than a week, amid reports that attackers are using it to execute malicious code on servers used by sensitive customer organizations.
Fortinet keeping mum shows the lack of transparency is consistent with previous zero-days that have been exploited against Fortinet customers. With no authoritative source for information, customers, reporters, and others have few other avenues for information other than social media posts where the attacks are being discussed…..
Gitlab fixes CVE-2024-8312 and CVE-2024-6826
GitLab has released patches for two vulnerabilities affecting multiple versions of its Community Edition (CE) and Enterprise Edition (EE) software. The vulnerabilities, identified as CVE-2024-8312 and CVE-2024-6826, could allow attackers to execute malicious code and disrupt service availability…..
Oracle fixes CVE-2024-21216 in Weblogic Server
Oracle has released patches as part of its October 2024 Critical Patch Update (CPU), addressing 329 vulnerabilities across a variety of products. Among these are five severe vulnerabilities within the Oracle WebLogic Server Core component, which will have severe impact if left unpatched
The most severe vulnerability tracked as CVE-2024-21216 with a CVSS 9.8, it allows an unauthenticated attacker to exploit the system remotely via the T3 or IIOP protocols. Successful exploitation of this flaw can result in a complete system takeover, giving the attacker full control over the server. This affect versions 12.2.1.4.0 and 14.1.1.0.0 of Oracle WebLogic Server,…..
SUBSCRIBE TO OUR BLOG TODAY !
We understand the importance of staying on top of the latest threats and vulnerabilities that can harm your digital life. You’ll receive the latest cybersecurity news, insights, resources, offers and analysis straight to your inbox every day
PoC Exploit released for Microsoft flaw CVE-2024-43532
Researcher from Akamai has released a proof-of-concept (PoC) exploit code for a critical Elevation of Privilege vulnerability, that’s tracked as CVE-2024-43532 with a CVSS score of 8.8.
This vulnerability exploits a fallback mechanism in the WinReg client, which insecurely uses obsolete transport protocols if the preferred SMB transport is unavailable. This enables attackers to relay NTLM authentication details, potentially compromising sensitive systems……
CISA adds ScienceLogic flaw CVE-2024-9537 to its KEV Catalog
The US CISA has added ScienceLogic vulnerability to its Known Exploited Vulnerability Catalog based on the evidence or active exploitation
The vulnerability tracked as CVE-2024-9537 with a CVSS score of 9.8, its remains unspecified the type of vulnerability stems in ScienceLogic platform……
WarmCookie Malware Dissection
WarmCookie, also known as BadSpace, is a new malware family that has been actively distributed through malspam and malvertising campaigns since April 2024.
Uppn compromise, the malware will have persistent access to networks and has been observed as an initial payload, often leading to the deployment of additional malware such as CSharp-Streamer-RAT and Cobalt Strike……
This brings end of this week in review security coverage. Thanks for visiting TheCyberThrone. If you like us please follow us on Facebook, Twitter, Instagram
Nice 👍