Mastodon

2 posts2 participants0 posts today

0x40kWhoa, talk about déjà vu! Seems like Firefox is playing catch-up right after Chrome dropped a fix for a sandbox escape. 🤯 Keep an eye out for CVE-2025-2857.So, what's the deal? In short, this nasty bug could let an attacker break right out of the browser's protective sandbox. And *that* means they could potentially gain full access to your system. Yeah, pretty scary stuff. 😱If you're running Firefox on Windows, heads up! This affects versions 136.0.4, ESR 115.21.1, and ESR 128.8.1. This whole situation feels familiar because Chrome *just* patched CVE-2025-2783, a similar issue that attackers were already actively exploiting out in the wild!Make no mistake, sandbox escapes are a huge deal. As a pentester, I can tell you: vulnerabilities like this get weaponized *fast*. Don't wait around.Seriously, update your Firefox ASAP! Trust me, you don't want to deal with the fallout if someone exploits this. It could get costly, fast.Ever seen a browser exploit do its thing live? Wild, right? Drop your stories below!<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/firefox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#firefox</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/updateNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updateNOW</a>

Bob Carver<a href="https://thehackernews.com/2025/03/zero-day-alert-google-releases-chrome.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thehackernews.com/2025/03/zero-day-alert-google-releases-chrome.html</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://infosec.exchange/tags/chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#chrome</a> <a href="https://infosec.exchange/tags/browser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#browser</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a>

Bob Carver<a href="https://www.forbes.com/sites/daveywinder/2025/03/12/critical-windows-warning-as-6-zero-day-attacks-confirmed-update-now/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.forbes.com/sites/daveywinder/2025/03/12/critical-windows-warning-as-6-zero-day-attacks-confirmed-update-now/</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Windows</a> <a href="https://infosec.exchange/tags/0Days" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#0Days</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a>

Bob Carver<a href="https://www.theverge.com/news/609546/apple-iphone-ipad-usb-restricted-mode-zero-day-exploit-patch" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.theverge.com/news/609546/apple-iphone-ipad-usb-restricted-mode-zero-day-exploit-patch</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apple</a> <a href="https://infosec.exchange/tags/iPhone" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iPhone</a> <a href="https://infosec.exchange/tags/iPad" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iPad</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a>

Bob Carver<a href="https://www.bleepingcomputer.com/news/security/apple-fixes-this-years-first-actively-exploited-zero-day-bug/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/apple-fixes-this-years-first-actively-exploited-zero-day-bug/</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apple</a> <a href="https://infosec.exchange/tags/Oday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Oday</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a> <a href="https://infosec.exchange/tags/iPhone" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iPhone</a> <a href="https://infosec.exchange/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macOS</a>

nemo™ 🇺🇦🚨 Security Alert! 🚨 Fortinet has flagged a critical vulnerability that allows attackers to take over devices remotely! 😱 If you're using FortiWLM versions 8.6.0-8.6.5 or 8.5.0-8.5.4, update immediately! 🛡️ This flaw was first discovered in May 2023 and remained unaddressed for months! 🔒 Read more here: <a href="https://www.techradar.com/pro/security/fortinet-flags-some-worrying-security-bugs-coming-back-from-the-dead" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.techradar.com/pro/security/fortinet-flags-some-worrying-security-bugs-coming-back-from-the-dead</a> <a href="https://mas.to/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://mas.to/tags/Fortinet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fortinet</a> <a href="https://mas.to/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://mas.to/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#newz</a>

nemo™ 🇺🇦Apple has rolled out iOS 18.2, fixing a serious encryption flaw in its Passwords app! 🔒 This update addresses a vulnerability that exposed users to potential MITM attacks due to unencrypted HTTP connections. 🚨 Users are urged to update their devices to ensure their passwords remain secure. 🛡️ <a href="https://mas.to/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apple</a> <a href="https://mas.to/tags/iOS182" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iOS182</a> <a href="https://mas.to/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://mas.to/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a> <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#newz</a> Read more: <a href="https://cyberinsider.com/apple-fixes-encryption-flaw-in-passwords-app-with-ios-18-2-update/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://cyberinsider.com/apple-fixes-encryption-flaw-in-passwords-app-with-ios-18-2-update/</a>

Bob Carver<a href="https://thehackernews.com/2024/11/apple-releases-urgent-updates-to-patch.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thehackernews.com/2024/11/apple-releases-urgent-updates-to-patch.html</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apple</a> <a href="https://infosec.exchange/tags/ZeroDays" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ZeroDays</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a>

Bob Carver<a href="https://thehackernews.com/2024/05/apple-and-google-launch-cross-platform.html?m=1" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://thehackernews.com/2024/05/apple-and-google-launch-cross-platform.html?m=1</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/bluetooth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bluetooth</a> <a href="https://infosec.exchange/tags/android" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#android</a> <a href="https://infosec.exchange/tags/apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#apple</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a>

Bob Carver<a href="https://www.zdnet.com/article/update-your-chrome-browser-asap-google-has-confirmed-a-zero-day-exploited-in-the-wild/#ftag=CAD-03-10abf5f" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.zdnet.com/article/update-your-chrome-browser-asap-google-has-confirmed-a-zero-day-exploited-in-the-wild/#ftag=CAD-03-10abf5f</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/Chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chrome</a> <a href="https://infosec.exchange/tags/0Day" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#0Day</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a>

Bob CarverLG fixes webOS security flaws that could let attackers remotely gain root access <a href="https://www.zdnet.com/article/lg-fixes-webos-security-flaws-that-could-let-attackers-remotely-gain-root-access/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.zdnet.com/article/lg-fixes-webos-security-flaws-that-could-let-attackers-remotely-gain-root-access/</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/LG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LG</a> <a href="https://infosec.exchange/tags/webOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webOS</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a>

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:"Update for Chrome: Enhancing Security Against Remote Code Execution Vulnerabilities"Google Chrome has recently been updated across Windows, Mac, and Linux platforms, with the latest versions being 122.0.6261.111/.112 for Windows and Mac, and 122.0.6261.111 for Linux. This update incorporates several security fixes. It addresses high issues such as memory access vulnerabilities and other potential threats. Noteworthy fixes include a high-severity out-of-bounds memory access flaw, a misimplementation in the V8 engine, and a use-after-free vulnerability in FedCM. For users on versions before 122.0.6261.111/112, it is strongly advised to update Google Chrome to ensure protection against these vulnerabilities.<a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/GoogleChrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GoogleChrome</a> <a href="https://infosec.exchange/tags/VulnerabilityManagement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#VulnerabilityManagement</a> <a href="https://infosec.exchange/tags/RCE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RCE</a> <a href="https://infosec.exchange/tags/CVE20242173" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE20242173</a> <a href="https://infosec.exchange/tags/CVE20242174" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE20242174</a> <a href="https://infosec.exchange/tags/CVE20242176" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE20242176</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a>For more detailed information, please refer to the official announcements on <a href="https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop.html" rel="nofollow noopener noreferrer" target="_blank">Google Chrome Releases</a> and <a href="https://www.hkcert.org/security-bulletin/google-chrome-remote-code-execution-vulnerabilities_20240307" rel="nofollow noopener noreferrer" target="_blank">HKCERT</a>. 🌍🔒🛡️

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:" <a href="https://infosec.exchange/tags/CiscoVuln" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CiscoVuln</a> Alert 🚨 CVE-2024-20338 Strikes Cisco Secure Client for Linux 🐧💥"A newly disclosed vulnerability, CVE-2024-20338, with a CVSS score of 7.3, targets the Cisco Secure Client for Linux, specifically the ISE Posture Module. This critical flaw allows local attackers to potentially execute arbitrary code with root privileges due to an uncontrolled search path element. Cisco has promptly issued an update to patch this security loophole. Kudos to Ivan Agarkov of Wargaming for the find! Stay vigilant and update ASAP! 🛡️✅Tags: <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/Cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cisco</a> <a href="https://infosec.exchange/tags/LinuxSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LinuxSecurity</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/CVE2024" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE2024</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a><a href="https://www.auscert.org.au/bulletins/ESB-2024.1448/" rel="nofollow noopener noreferrer" target="_blank">Source</a>

Bob Carver<a href="https://www.tomsguide.com/phones/iphones/apple-just-fixed-two-major-iphone-security-flaws-install-these-emergency-updates-now" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.tomsguide.com/phones/iphones/apple-just-fixed-two-major-iphone-security-flaws-install-these-emergency-updates-now</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Apple</a> <a href="https://infosec.exchange/tags/iOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iOS</a> <a href="https://infosec.exchange/tags/iPadOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iPadOS</a> <a href="https://infosec.exchange/tags/0days" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#0days</a> <a href="https://infosec.exchange/tags/updatenow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#updatenow</a>

Matt WillemsenCybercriminal groups actively exploiting ‘catastrophic’ ScreenConnect bug <a href="https://therecord.media/connectwise-screenconnect-bug-cybercrime-exploitation" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://therecord.media/connectwise-screenconnect-bug-cybercrime-exploitation</a> <a href="https://mastodon.social/tags/ConnectWise" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ConnectWise</a>’s <a href="https://mastodon.social/tags/ScreenConnect" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ScreenConnect</a> <a href="https://mastodon.social/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a>!!! <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://mastodon.social/tags/criticalthreat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#criticalthreat</a> <a href="https://mastodon.social/tags/EmbarrassinglyEasy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EmbarrassinglyEasy</a>” <a href="https://mastodon.social/tags/hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hackers</a> <a href="https://mastodon.social/tags/exploit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploit</a>

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:"🚨 Critical Vulnerability Alert: ConnectWise ScreenConnect Under Attack! 🚨"Sophos researchers have unveiled a situation for users of ConnectWise ScreenConnect, detailing how CVE-2024-1709 and CVE-2024-1708 vulnerabilities are being exploited to deliver malware, including the notorious LockBit ransomware. These vulnerabilities open the door for attackers to execute arbitrary code and take control of unpatched systems. ConnectWise ScreenConnect, a remote access software, has vulnerabilities being exploited by hackers to deliver malware, including ransomware, to businesses. Critical vulnerabilities allow unauthorized access and command execution. It's essential to update ScreenConnect to version 23.9.8 or later to mitigate these risks. Cloud-hosted ScreenConnect users are safe, but on-premise versions need manual updates. To protect your organization from specific security weaknesses in ScreenConnect software, follow these simplified steps:<ol><li>Find all ScreenConnect software in your network, including those managed by others. It's essential to know where it's installed to understand your risk.</li><li>Isolate or remove the ScreenConnect Client from devices until the server is securely updated or thoroughly checked. If you don't control the server, removing the client might be the best quick fix.</li><li>Examine devices with ScreenConnect for signs of hacking, like new unknown user accounts, strange software behavior, and attempts to disable security features.</li><li>If you find anything suspicious, start your incident response plan to tackle the issue and prevent further damage. Specifically, look for indicators of two main vulnerabilities (CVE-2024-1709 & CVE-2024-1708) by examining server versions, IP connections, and unexpected file presence, which could show a breach. 🛡️💻🔐</li></ol>Tags: <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/ConnectWiseScreenConnect" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ConnectWiseScreenConnect</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://infosec.exchange/tags/Ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Ransomware</a> <a href="https://infosec.exchange/tags/LockBit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LockBit</a> <a href="https://infosec.exchange/tags/CVE2024" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE2024</a>-1709 <a href="https://infosec.exchange/tags/CVE2024" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE2024</a>-1708 <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a> <a href="https://infosec.exchange/tags/StaySecure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#StaySecure</a>Source: <a href="https://news.sophos.com/en-us/2024/02/23/connectwise-screenconnect-attacks-deliver-malware/" rel="nofollow noopener noreferrer" target="_blank">Sophos News</a>

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:🚨 <a href="https://infosec.exchange/tags/SecurityAlert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecurityAlert</a> 🚨CVE-2024-21488: Arbitrary Command Injection in Node.js's network package (versions < 0.7.0).⚠️ This critical vulnerability affects older versions of the network package for Node.js. It's classified as an Arbitrary Command Injection due to insufficient input sanitization in the <code>child_process exec</code> function.🔍 Specific Risk: The flaw is exploitable when attacker-controlled input is fed into the <code>mac_address_for</code> function, allowing execution of arbitrary commands on the OS hosting the network package.🔗 Stay informed and secure: <a href="https://security.snyk.io/vuln/SNYK-JS-NETWORK-6184371" rel="nofollow noopener noreferrer" target="_blank">SNYK-JS-NETWORK-6184371</a><a href="https://infosec.exchange/tags/NodeJS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NodeJS</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a>

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:"🚨 Multiple issues in Jenkins, an open-source automation server that is widely used in software development 🐛🔧"Jenkins, a popular automation server, has a vulnerability in its command line interface (CLI). This issue stems from the args4j library's feature that replaces an "@" character followed by a file path with the contents of that file. This feature, enabled by default in Jenkins versions up to 2.441 and LTS 2.426.2, allows attackers to read files on the Jenkins controller's file system. Users with "Overall/Read" permission can read entire files, while those without this permission can read the first few lines, depending on the CLI commands available.The vulnerability also extends to binary files, including cryptographic keys, albeit with some limitations. Various attack vectors have been identified, exploiting this flaw to achieve remote code execution or other malicious objectives. These include manipulating the "Resource Root URL" functionality, forging "Remember me" cookies, conducting stored cross-site scripting (XSS) attacks through build logs, bypassing CSRF protection, decrypting secrets stored in Jenkins, deleting items, and downloading Java heap dumps. These attacks rely on specific conditions, such as the ability to retrieve binary secrets, access to Jenkins's web session ID, and the attacker's knowledge or guesswork about user names with "Overall/Read" permission.🚨💻Key vulnerabilities include:<ul><li>CVE-2024-23897: Arbitrary file read vulnerability through the CLI can lead to RCE</li><li>CVE-2024-23899: Git server Plugin allowing file content exposure that can lead to RCE.</li><li>CVE-2024-23900: Matrix Project Plugin with user-defined axis names issues.</li><li>CVE-2024-23901 & CVE-2024-23902: GitLab Branch Source Plugin with risks of crafted Pipeline builds and CSRF vulnerabilities.</li><li>CVE-2024-23903: Potential for webhook token theft in GitLab Branch Source Plugin.</li><li>CVE-2023-6147 & CVE-2023-6148: Qualys Policy Compliance Scanning Connector Plugin with XSS and XXE vulnerabilities.</li></ul>🔐 Recommended actions:<ul><li>Update Git server Plugin to version 99.101.v720e86326c09 or later.</li><li>Update GitLab Branch Source Plugin to version 688.v5fa_356ee8520 or later.</li><li>Update Matrix Project Plugin to version 822.824.v14451b_c0fd42 or later.</li><li>Update Qualys Policy Compliance Scanning Connector Plugin to version 1.0.6 or later.</li><li>For detailed mitigation steps, see Jenkins' advisory: <a href="https://jenkins.io/security/advisory/2024-01-24/" rel="nofollow noopener noreferrer" target="_blank">Jenkins Security Advisory</a>.</li></ul>Stay alert and ensure your Jenkins environment is up-to-date! 🛡️💡Sources: <a href="https://jenkins.io/security/advisory/2024-01-24/" rel="nofollow noopener noreferrer" target="_blank">Jenkins Security Advisory</a> and <a href="https://www.tenable.com/plugins/pipeline/issues/164582" rel="nofollow noopener noreferrer" target="_blank">Tenable</a>,Tags: <a href="https://infosec.exchange/tags/Jenkins" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Jenkins</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/CVE2024" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE2024</a> <a href="https://infosec.exchange/tags/CyberThreat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberThreat</a> <a href="https://infosec.exchange/tags/PluginSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PluginSecurity</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a> 🚀👨‍💻🛠️

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:"⚠️ Alert: Google Chrome Zero-Day CVE-2023-7024 Exploited in the Wild! 🌐💥"Google's latest patch addresses a critical zero-day vulnerability in Chrome, CVE-2023-7024. Identified as a heap-based buffer overflow in WebRTC, it's exploited in the wild. Chrome versions before 120.0.6099.129 are vulnerable. 🚨Details: CVE-2023-7024, discovered by Google TAG, affects several browsers using WebRTC. It's the eighth zero-day patched by Google this year, underscoring the evolving cybersecurity landscape.Mitigation: Users should urgently update to Chrome 120.0.6099.129/130 (for Windows) or 120.0.6099.129 (for Mac/Linux) to protect against this and other security fixes included in recent Chrome updates. 🛡️Source: <a href="https://threatprotect.qualys.com/2023/12/21/google-chrome-zero-day-vulnerability-exploited-in-the-wild-cve-2023-7024/" rel="nofollow noopener noreferrer" target="_blank">Qualys ThreatPROTECT</a> by Diksha Ojha; <a href="https://chromereleases.googleblog.com/2023" rel="nofollow noopener noreferrer" target="_blank">Chrome Releases Blog</a>Tags: <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/GoogleChrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GoogleChrome</a> <a href="https://infosec.exchange/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ZeroDay</a> <a href="https://infosec.exchange/tags/CVE2023" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE2023</a> <a href="https://infosec.exchange/tags/WebRTC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WebRTC</a> <a href="https://infosec.exchange/tags/UpdateNow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UpdateNow</a> <a href="https://infosec.exchange/tags/CyberAttack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberAttack</a> <a href="https://infosec.exchange/tags/InfoSecExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSecExchange</a>

Recent searches

Search options

Administered by:

Server stats:

#updatenow