#ArrayNetworks

Hackers exploit critical bug in Array Networks SSL VPN products

November 26, 2024 by Xynik

November 26, 2024 at 08:27AM America’s Cyber Defense Agency has identified hackers exploiting a remote code execution vulnerability in SSL VPN products from Array Networks AG and vxAG ArrayOS. **Meeting Takeaways:** 1. **Subject Matter:** America’s Cyber Defense Agency (ACDA) is addressing a significant security threat. 2. **Vulnerability Identified:** There is a remote code execution vulnerability … Read more

Chinese Hackers Exploiting Critical Vulnerability in Array Networks Gateways

November 26, 2024 by Xynik

November 26, 2024 at 07:22AM CISA has warned about a critical vulnerability (CVE-2023-28461) in Array Networks’ secure access gateways that allows remote code execution without authentication. Exploited by the group Earth Kasha, patching is crucial; federal agencies must address it by December 16. Organizations should review CISA’s KEV list and apply fixes promptly. ### Meeting … Read more