VULNERA Pulse

Telerik — User Interface (UI) for ASP.NET AJAX

CVE-2017-11357 / Added: Jan. 26, 2023

HIGH CVSS 7.50

Telerik UI for ASP.NET AJAX contains an insecure direct object reference vulnerability in RadAsyncUpload that can result in file uploads in a limited location and/or remote code execution.

Back to top ↑

Zoho — ManageEngine

CVE-2022-47966 / Added: Jan. 23, 2023

CRITICAL CVSS 9.80

Multiple Zoho ManageEngine products contain an unauthenticated remote code execution vulnerability due to the usage of an outdated third-party dependency, Apache Santuario.

Headlines

• Jan. 24, 2023 - CISA added Zoho ManageEngine RCE (CVE-2022-47966) to its Known Exploited Vulnerabilities Catalog
• Jan. 23, 2023 - Attackers exploiting critical flaw in many Zoho ManageEngine products
• Jan. 17, 2023 - Unpatched Zoho MangeEngine Products Under Active Cyberattack
• Jan. 17, 2023 - Researchers Warn Against Zoho ManageEngine Exploit Attacks
• Jan. 17, 2023 - These VMware products can remotely execute code, so update now
• Jan. 17, 2023 - Zoho ManageEngine PoC Exploit to be Released Soon - Patch Before It's Too Late!

Back to top ↑

CVE-2021-35394

CRITICAL CVSS 9.80

CISA Known Exploited Actively Exploited Remote Code Execution

Published: Aug. 16, 2021

Realtek Jungle SDK version v2.x up to v3.4.14B provides a diagnostic tool called 'MP Daemon' that is usually compiled as 'UDPServer' binary. The binary is affected by multiple memory corruption vulnerabilities and an arbitrary command injection vulnerability that can be exploited by remote unauthenticated attackers.

Vendor Impacted: Realtek

Product Impacted: Jungle Software Development Kit (Sdk)

Quotes

• Realtek Jungle SDK version v2.x up to v3.4.14B provides a diagnostic tool called 'MP Daemon' that is usually compiled as 'UDPServer' binary. The binary is affected by multiple memory corruption vulnerabilities and an arbitrary command injection vulnerability that can be exploited by remote unauthenticated attackers - Security Affairs
• From August 2021 to December 2022, we have observed 134 million exploit attempts in total, targeting CVE-2021-35394, with 97% of these attacks occurring after the start of August 2022 - BleepingComputer
• As of December 2022, we've observed 134 million exploit attempts in total leveraging this vulnerability, and about 97% of these attacks occurred after the start of August 2022. At the time of writing, the attack is still ongoing - Securityweek.com

Headlines

• Jan. 26, 2023 - Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)
• Jan. 25, 2023 - Realtek SDK Vulnerability exploited to hack into 190 models of IoT ... - Information Security Newspaper
• Jan. 25, 2023 - Malware exploited critical Realtek SDK bug in millions of attacks
• Jan. 25, 2023 - Botnets exploited Realtek SDK critical bug in millions of attacks
• Jan. 24, 2023 - Attacks Targeting Realtek SDK Vulnerability Ramping Up

CVE-2022-42856

HIGH CVSS 8.80

CISA Known Exploited Actively Exploited

Published: Dec. 15, 2022

A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1..

Vendor Impacted: Apple

Products Impacted: Safari, Ios, Ipados, Tvos, Iphone Os, Macos

Quotes

• Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1 - Latest news
• Processing maliciously crafted web content may lead to arbitrary code execution - The Register - Security
• Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1 - Security Affairs
• May have been actively exploited - BleepingComputer

Headlines

• Jan. 25, 2023 - New update fixes major security flaw on older iPhones & iPads
• Jan. 25, 2023 - Apple just patched this 'actively exploited' flaw in older iPhones and iPads
• Jan. 25, 2023 - Apple Rolls Out Software Updates With Critical Security Fixes for Older iPhones, iPads, MacBooks
• Jan. 25, 2023 - iPhone 5S 又拿到安全性更新了：iOS 12.5.7 (2023/01/23)
• Jan. 24, 2023 - Apple issues emergency patch for outdated iPhones after criminals pounce on WebKit
• Jan. 24, 2023 - Apple emits emergency patch for older iPhones after snoops pounce on WebKit hole
• Jan. 24, 2023 - Apple patches are out – old iPhones get an old zero-day fix at last!
• Jan. 24, 2023 - Apple just updated iOS 12 to patch a critical security flaw
• Jan. 24, 2023 - Apple Patches Exploited iOS Vulnerability in Old iPhones
• Jan. 24, 2023 - Apple iOS 15.7.3 And iOS 12.5.7 Releases: Should You Upgrade? - Forbes
• Jan. 24, 2023 - Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution
• Jan. 24, 2023 - Apple fixes dangerous iOS flaw that could have let hackers take over your iPhone
• Jan. 24, 2023 - Apple Issues Updates for Older Devices to Fix Actively Exploited Vulnerability
• Jan. 24, 2023 - APPLE-SA-2023-01-23-3 iOS 12.5.7
• Jan. 23, 2023 - Apple backported patches for CVE-2022-42856 zero-day on older iPhones, iPads
• Jan. 23, 2023 - Apple fixes actively exploited iOS zero-day on older iPhones, iPads

CVE-2022-34689

HIGH CVSS 7.50

Remote Code Execution

Published: Oct. 11, 2022

Windows CryptoAPI Spoofing Vulnerability.

Vendor Impacted: Microsoft

Products Impacted: Windows Server 2008, Windows Server 2012, Windows Server 2016, Windows 10, Windows 8.1, Windows Server 2022, Windows 11, Windows Server 2019, Windows Rt 8.1, Windows 7

Quotes

• We found that fewer than one percent of visible devices in data centers are patched, rendering the rest unprotected from exploitation of this vulnerability - TechRadar - All the latest technology news
• An attacker could manipulate an existing public x.509 certificate to spoof their identity and perform actions such as authentication or code signing as the targeted certificate - The Hacker News
• When the patch was released, this bug was missing from [Microsoft's] release notes - Dark Reading

Headlines

• Jan. 26, 2023 - Your apps and Windows devices could be facing a whole new kind of threat
• Jan. 26, 2023 - CryptoAPI bug makes 99% of Windows servers vulnerable
• Jan. 26, 2023 - Researchers Release PoC Exploit for Windows CryptoAPI Bug Discovered by NSA
• Jan. 26, 2023 - Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)
• Jan. 26, 2023 - Months after NSA disclosed Microsoft cert bug, datacenters remain unpatched
• Jan. 25, 2023 - Exploit released for critical Windows CryptoAPI spoofing bug
• Jan. 25, 2023 - Researchers Pioneer PoC Exploit for NSA-Reported Bug in Windows CryptoAPI

CVE-2022-31711

CVSS Not Assigned

Risk Context N/A

Published: Jan. 26, 2023

VMware vRealize Log Insight contains an Information Disclosure Vulnerability. A malicious actor can remotely collect sensitive session and application information without authentication.

Quotes

• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - TechRadar - All the latest technology news
• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - Security Affairs
• Workaround for VMSA-2023-0001 has been successfully implemented - BleepingComputer

Headlines

• Jan. 25, 2023 - VMware fixes four serious vRealize vulnerabilities
• Jan. 25, 2023 - VMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
• Jan. 25, 2023 - Logfile management is no fun. Now it's a nightmare thanks to critical-rated VMware flaws
• Jan. 25, 2023 - VMware logging software gets security patch
• Jan. 24, 2023 - VMware warns of critical code execution bugs in vRealize Log Insight
• Jan. 24, 2023 - VMware fixes critical security bugs in vRealize log analysis tool
• Jan. 24, 2023 - VMware Plugs Critical Code Execution Flaws

CVE-2022-31710

CVSS Not Assigned

Risk Context N/A

Published: Jan. 26, 2023

vRealize Log Insight contains a deserialization vulnerability. An unauthenticated malicious actor can remotely trigger the deserialization of untrusted data which could result in a denial of service.

Quotes

• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - TechRadar - All the latest technology news
• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - Security Affairs
• Workaround for VMSA-2023-0001 has been successfully implemented - BleepingComputer

Headlines

• Jan. 25, 2023 - VMware fixes four serious vRealize vulnerabilities
• Jan. 25, 2023 - VMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
• Jan. 25, 2023 - Logfile management is no fun. Now it's a nightmare thanks to critical-rated VMware flaws
• Jan. 25, 2023 - VMware logging software gets security patch
• Jan. 24, 2023 - VMware warns of critical code execution bugs in vRealize Log Insight
• Jan. 24, 2023 - VMware fixes critical security bugs in vRealize log analysis tool
• Jan. 24, 2023 - VMware Plugs Critical Code Execution Flaws

CVE-2022-31704

CVSS Not Assigned

Remote Code Execution

Published: Jan. 26, 2023

The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into sensitive files of an impacted appliance which can result in remote code execution.

Quotes

• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - TechRadar - All the latest technology news
• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - Security Affairs
• Workaround for VMSA-2023-0001 has been successfully implemented - BleepingComputer

Headlines

• Jan. 25, 2023 - VMware fixes four serious vRealize vulnerabilities
• Jan. 25, 2023 - VMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
• Jan. 25, 2023 - Logfile management is no fun. Now it's a nightmare thanks to critical-rated VMware flaws
• Jan. 25, 2023 - VMware logging software gets security patch
• Jan. 24, 2023 - VMware warns of critical code execution bugs in vRealize Log Insight
• Jan. 24, 2023 - VMware fixes critical security bugs in vRealize log analysis tool
• Jan. 24, 2023 - VMware Plugs Critical Code Execution Flaws

CVE-2023-23560

CVSS Not Assigned

Remote Code Execution

Published: Jan. 23, 2023

In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation.

Quotes

• Web Services feature of newer Lexmark devices - Dark Reading
• TCP 65002 (WSD Print Service) - TechRadar - All the latest technology news
• Successful exploitation of this vulnerability can lead to an attacker being able to remotely execute arbitrary code on a device - SecurityWeek
• A Server-Side Request Forgery (SSRF) vulnerability has been identified in the Web Services feature of newer Lexmark devices. This vulnerability can be leveraged by an attacker to gain arbitrary code execution on the device - Security Affairs
• Settings - Reports - Menu Setting Page - BleepingComputer

Headlines

• Jan. 27, 2023 - Critical RCE Lexmark Printer Bug Has Public Exploit
• Jan. 27, 2023 - Lexmark security bug leaves thousands of its printers open to attack
• Jan. 27, 2023 - Critical Vulnerability Impacts Over 120 Lexmark Printers
• Jan. 27, 2023 - CVE-2023-23560 flaw exposes 100 Lexmark printer models to hack
• Jan. 26, 2023 - Lexmark warns of RCE bug affecting 100 printer models, PoC released

CVE-2022-31706

CVSS Not Assigned

Remote Code Execution

Published: Jan. 26, 2023

The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution.

Quotes

• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - The Hacker News
• An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution - Security Affairs

Headlines

• Jan. 25, 2023 - VMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
• Jan. 25, 2023 - VMware logging software gets security patch
• Jan. 24, 2023 - VMware warns of critical code execution bugs in vRealize Log Insight
• Jan. 24, 2023 - VMware Plugs Critical Code Execution Flaws