November 12, 2024 at 11:14AM Researchers have revealed a proof of concept for a serious vulnerability in Citrix’s Virtual Apps and Desktops, allowing unauthenticated remote code execution through HTTP requests. This flaw lets attackers gain system privileges and impersonate users. Citrix disputes the severity and has issued hotfixes, urging customers to apply them immediately. ### … Read more
November 4, 2024 at 10:58PM Google has identified a security flaw in Android, CVE-2024-43093, which is being actively exploited and allows unauthorized access to sensitive directories. Another flaw, CVE-2024-43047, in Qualcomm chipsets, is also exploited but is now patched. The exact exploitation methods and potential connections between the two vulnerabilities remain unclear. ### Meeting Takeaways … Read more
October 31, 2024 at 12:50PM The LiteSpeed Cache plugin for WordPress fixed a high-severity privilege elevation flaw (CVE-2024-50550) enabling unauthenticated users to gain admin rights. The vulnerability stemmed from weak hash checks in the role simulation feature. A patch was released on October 17, 2024, but millions remain potentially exposed. ### Meeting Takeaways: 1. **Vulnerability … Read more
October 31, 2024 at 06:32AM A critical unauthenticated privilege escalation vulnerability (CVE-2024-50550) has been discovered in the LiteSpeed Cache plugin for WordPress, allowing unauthorized users to gain admin access. The flaw has been patched in version 6.5.2. Users are urged to stay informed on plugin updates due to ongoing WordPress repository changes. ### Meeting Takeaways … Read more
October 22, 2024 at 05:38PM A critical zero-day vulnerability (CVE-2024-44068) in Samsung’s mobile processors allows arbitrary code execution. Discovered in the m2m scaler driver, it received an 8.1 CVSS score and was patched in October 2024. Reported by Google researchers, it includes privilege escalation and anti-forensic measures. **Meeting Takeaways:** 1. **Discovery of Vulnerability**: A zero-day … Read more
October 13, 2024 at 02:30PM Apple released updates for iTunes 12.13.3 for Windows on September 12, 2024, addressing two vulnerabilities: CVE-2024-44193, which involves logic issues allowing privilege escalation, and CVE-2024-44157, a stack buffer overflow affecting system stability when handling malicious video files. Updates are available for Windows 10 and later. ### Meeting Notes Summary **Apple … Read more
October 13, 2024 at 06:54AM OilRig, an Iranian cyber threat actor, has exploited a patched Windows Kernel vulnerability (CVE-2024-30088) in a cyber espionage campaign targeting the U.A.E. and Gulf region. Using sophisticated tactics, including a backdoor named STEALHOOK, they siphon credentials via Microsoft Exchange servers, aiming to maintain persistent access to compromised networks. ### Meeting … Read more
October 10, 2024 at 03:24PM Microsoft’s new Administrator Protection feature in Windows aims to strengthen security by limiting local administrator privileges. It transforms privilege elevation into a “just-in-time” event, utilizing a temporary shadow account that disappears post-task, making it harder for attackers to exploit administrative access. This enhances overall system security and monitoring capabilities. ### … Read more
September 23, 2024 at 10:00AM ESET released patches for high-severity CVE-2024-7400 impacting Windows products, enabling privilege escalation through file deletion. The fix was automatically distributed to customers. The security flaw affected multiple end-user and enterprise products. ESET also addressed medium-severity CVE-2024-6654, which could cause denial-of-service attacks on macOS security tools, with patches for Cyber Security … Read more
September 17, 2024 at 05:00PM Broadcom has released two patches addressing critical vulnerabilities in VMware vCenter Server and Cloud Foundation. CVE-2024-38812 is a heap overflow flaw with a CVSS score of 9.8, enabling remote code execution. CVE-2024-38813 allows for privilege escalation and has a CVSS score of 7.5. Both vulnerabilities were discovered during a cyber … Read more