Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access

December 4, 2024 at 12:45AM A critical vulnerability (CVE-2024-10905) in SailPoint’s IdentityIQ software allows unauthorized access to application directory content, with a CVSS score of 10.0. Affected versions include 8.2, 8.3, and 8.4, along with their respective patch levels. No security advisory from SailPoint has been released yet. **Meeting Takeaways – December 4, 2024** 1. … Read more

Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation

November 20, 2024 at 12:18AM Oracle has alerted users about a high-severity vulnerability (CVE-2024-21287) in the Agile Product Lifecycle Management Framework, which is being actively exploited. This flaw allows unauthenticated access to sensitive files. Users are urged to apply patches immediately for protection, as details on the attackers remain unknown. **Meeting Takeaways – Nov 20, … Read more

Why the long name? Okta discloses auth bypass bug affecting 52-character usernames

November 4, 2024 at 06:41AM Okta identified a security flaw that could let attackers exploit usernames of 52 characters or more for AD/LDAP Delegated Authentication. This bug persisted for over three months before it was fixed on October 30. Okta advises customers to implement multi-factor authentication and check logs for suspicious activity since July 23. … Read more

CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog

October 3, 2024 at 05:25PM The Cybersecurity and Infrastructure Security Agency has added CVE-2024-29824, an SQL Injection vulnerability in Ivanti Endpoint Manager, to its Known Exploited Vulnerabilities Catalog. Rated critical with a CVSS score of 9.6, this flaw was exploited in the wild, prompting Ivanti to release security updates in May. Organizations are cautioned to … Read more

Ransomware gang using stolen Microsoft Entra ID creds to bust into the cloud

September 27, 2024 at 09:44AM Microsoft issued a warning about Storm-0501’s shift in tactics, targeting hybrid cloud environments. Despite being a relatively new group, Storm-0501 is prolific in carrying out ransomware attacks and has been linked to various ransomware affiliate programs. The group typically targets over-privileged accounts, and Microsoft has provided threat-hunting tips and indicators … Read more

Patch now: Critical Nvidia bug allows container escape, complete host takeover

September 26, 2024 at 05:52PM Nvidia’s Container Toolkit has a critical bug, CVE-2024-0132, rated 9.0/10 in severity, allowing an attacker to escape containers and take over the host. Nvidia issued a fix with versions v1.16.2 and v24.6.2. The vulnerability affects cloud and AI workloads, impacting 33% of cloud environments. Wiz’s security researchers found and disclosed … Read more

Security Upgrades Available for 3 HPE Aruba Networking Bugs

September 26, 2024 at 04:26PM HPE Aruba Networking addressed three critical vulnerabilities (CVE-2024-42505, CVE-2024-42506, and CVE-2024-42507) that could allow remote code execution by unauthenticated attackers on Aruba access points. The bugs impact devices running AOS-8 and AOS-10, prompting the recommendation for administrators to install updates to prevent potential attacks. Other Aruba products are not affected. … Read more

GitLab Warns of Max Severity Authentication Bypass Bug

September 19, 2024 at 05:16PM Organizations using self-hosted GitLab instances with SAML-based authentication are advised to urgently update to the latest versions due to a severe bug (CVE-2024-45409) allowing attackers to bypass authentication checks and gain unauthorized access. GitLab has already updated managed instances but urges self-managed installations to patch immediately to mitigate the vulnerability. … Read more

Apple Patches Vision Pro Vulnerability to Prevent GAZEploit Attacks

September 13, 2024 at 09:33AM Apple has released a patch for its Vision Pro mixed reality headset after researchers demonstrated an attack method, known as GAZEploit, that could infer a user’s typed data by tracking their avatar’s eye movements. The vulnerability, tracked as CVE-2024-40865, has been patched with the release of visionOS 1.3, which suspends … Read more

Cisco Patches High-Severity Vulnerabilities in Network Operating System

September 12, 2024 at 07:47AM Cisco announced patches for eight vulnerabilities in the IOS XR network operating system, including fixes for six high-severity bugs. The most severe flaws allow privilege escalation and remote DoS attacks. Two high-severity flaws affecting the Routed Passive Optical Network (PON) controller software could be exploited for command injection. Cisco plans … Read more