September 19, 2024 at 06:57PM
CISA added five flaws to its Known Exploited Vulnerabilities catalog, including a critical remote code execution (RCE) flaw in Apache HugeGraph-Server (CVE-2024-27348). It urges users to apply mitigations or discontinue use by October 9, 2024. The product is vital for various sectors and has older vulnerabilities added for documentation purposes.
From the meeting notes, the key takeaways are:
1. CISA has added five new flaws to its Known Exploited Vulnerabilities (KEV) catalog, including the critical remote code execution (RCE) flaw (CVE-2024-27348) impacting Apache HugeGraph-Server.
2. The CVE-2024-27348 flaw impacts HugeGraph-Server versions from 1.0.0 up to, but not including, 1.3.0. Users are urged to upgrade to version 1.3.0, use Java 11, and enable the Auth system to mitigate the vulnerability.
3. Additionally, enabling the “Whitelist-IP/port” function is recommended to enhance the security of the RESTful-API execution.
4. CISA has warned of active exploitation of CVE-2024-27348 and given until October 9, 2024, for mitigation application or consideration of product discontinuation by federal agencies and other critical infrastructure organizations.
5. Four other flaws have been included in the KEV catalog, documenting older vulnerabilities used in previous attacks, including those impacting Microsoft SQL Server Reporting Services, Microsoft Windows Task Scheduler, Oracle JDeveloper, and Oracle WebLogic Server.
These takeaways highlight the urgent need for users to apply the available security updates and recommended mitigations for the mentioned vulnerabilities, especially given the active exploitation and the high-value enterprise environments in which the product is used.