Snapshot
June 15, 2024 - June 21, 2024
CISA Known Exploited Vulnerabilities |
||||
|---|---|---|---|---|
| No issues added to the CISA Known Exploited Vulnerability list. | ||||
Newswires |
||||
|
CosmicSting Vulnerability Threatens Majority of Adobe Commerce and Magento Websites
A significant vulnerability, termed 'CosmicSting', affects Adobe Commerce and Magento websites, leaving a vast number of sites exposed to potential severe attacks. |
June 20, 2024 |
|||
|
Active Exploitation of SolarWinds Serv-U Path-Traversal Vulnerability
Threat actors are currently exploiting a path-traversal vulnerability in SolarWinds Serv-U, using publicly accessible proof-of-concept (PoC) exploits. |
June 20, 2024 |
|||
|
Security Flaw in Phoenix SecureCore UEFI Affecting Multiple Intel CPUs Unveiled
Cybersecurity experts have revealed a security vulnerability in the Phoenix SecureCore UEFI firmware that impacts a range of Intel Core desktop and mobile processors. |
June 20, 2024 |
|||
|
Chinese Cyber Espionage Campaign Targets Telecom Operators in Asia
Chinese cyber espionage groups have been connected to an ongoing campaign that has breached several telecom operators in a specific Asian country since at least 2021. |
June 20, 2024 |
|||
|
Chinese Cyber Espionage Group UNC3886 Exploits Fortinet and VMware Zero-Days
A cyber espionage group, UNC3886, with connections to China, has been found exploiting zero-day vulnerabilities in security devices from Fortinet, Ivanti, and VMware. |
June 19, 2024 |
|||
|
Critical Vulnerability in Rancher Kubernetes Engine Risks Exposure of Sensitive Credentials
A critical flaw, identified as CVE-2023-32191, has been detected in the Rancher Kubernetes Engine (RKE). |
June 19, 2024 |
|||
|
Critical Security Flaws in VMware vCenter Server Addressed: Immediate Patching Urged
VMware has put out a security advisory detailing critical vulnerabilities in its vCenter Server, which includes remote code execution and local privilege escalation flaws. |
June 18, 2024 |
|||
|
Discord Spy Campaign Uses Emojis to Control Malware; Exploits Old Linux Flaw
A persistent cyber threat from Pakistan is leveraging a well-known Linux vulnerability and innovative Discord-based malware to conduct cyber espionage on Indian government organizations. |
June 17, 2024 |
|||
|
ASUS Issues Critical Firmware Update for Seven Router Models
ASUS has rolled out a firmware update to rectify a critical vulnerability that affects seven of its router models. |
June 15, 2024 |
|||
Vulnerabilities In The News |
||||
| CVE | Summary | Severity | Vendor | Risk Context |
| CVE-2024-37080 (8) | vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. | CRITICAL |
Remote Code Execution |
|
| CVE-2024-37079 (8) | vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. | CRITICAL |
Remote Code Execution Public Exploits Available |
|
| CVE-2024-3912 (4) | Certain models of ASUS routers have an arbitrary firmware upload vulnerability. | CRITICAL |
Remote Code Execution |
|
| CVE-2024-3080 (4) | Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device. | CRITICAL | Risk Context N/A | |
| CVE-2023-34048 (3) | vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. | CRITICAL | Vmware |
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
| CVE-2022-42475 (3) | A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 throu... | CRITICAL | Fortinet |
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
| CVE-2024-37081 (8) | The vCenter Server contains multiple local privilege escalation vulnerabilities due to misconfiguration of sudo. | HIGH | Risk Context N/A | |
| CVE-2022-0847 (3) | A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_pag... | HIGH | Netapp, Siemens, Redhat, Ovirt, Linux, Sonicwall, Fedoraproject |
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
| CVE-2024-0762 (5) | Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue a... | HIGH |
Actively Exploited |
|
| CVE-2024-3079 (3) | Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges... | HIGH | Risk Context N/A | |
CISA Known Exploited Vulnerabilities
CISA added 0 vulnerabilities to the known exploited vulnerabilities list.
In The News
Vulnerabilities receiving the most attention in traditional news media.
CVE-2024-37080 |
|
CRITICAL CVSS 9.80 EPSS Score 0.04 EPSS Percentile 9.04 |
|
Remote Code Execution |
|
Published: June 18, 2024 |
|
vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-37079 |
|
CRITICAL CVSS 9.80 EPSS Score 0.04 EPSS Percentile 9.04 |
|
Remote Code Execution Public Exploits Available |
|
Published: June 18, 2024 |
|
vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-3912 |
|
CRITICAL CVSS 9.80 EPSS Score 0.09 EPSS Percentile 39.23 |
|
Remote Code Execution |
|
Published: June 14, 2024 |
|
Certain models of ASUS routers have an arbitrary firmware upload vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands on the device. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-3080 |
|
CRITICAL CVSS 9.80 EPSS Score 0.09 EPSS Percentile 39.23 |
|
Risk Context N/A |
|
Published: June 14, 2024 |
|
Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2023-34048 |
|
CRITICAL CVSS 9.80 EPSS Score 4.38 EPSS Percentile 92.44 |
|
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
|
Published: Oct. 25, 2023 |
|
vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution. |
|
Vendor Impacted: Vmware |
|
Product Impacted: Vcenter Server |
|
Headlines |
| Back to top ↑ |
CVE-2022-42475 |
|
CRITICAL CVSS 9.80 EPSS Score 32.12 EPSS Percentile 97.04 |
|
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
|
Published: Jan. 2, 2023 |
|
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0 through 6.2.11, 6.0.15 and earlier and FortiProxy SSL-VPN 7.2.0 through 7.2.1, 7.0.7 and earlier may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests. |
|
Vendor Impacted: Fortinet |
|
Products Impacted: Fortigate-6501f-Dc, Fortigate-6300f, Fortigate-6300f-Dc, Fpm-7620f, Fim-7920e, Fortigate-6500f-Dc, Fim-7941f, Fortiproxy, Fortigate-6500f, Fim-7904e, Fortigate-6601f-Dc, Fpm-7620e, Fortigate-7030e, Fortigate-6601f, Fortigate-7121f, Fortigate-7040e, Fim-7921f, Fortigate-6501f, Fim-7910e, Fortios, Fortigate-7060e, Fim-7901e, Fpm-7630e |
|
Quotes
|
|
Headlines |
| Back to top ↑ |
CVE-2024-37081 |
|
HIGH CVSS 7.80 EPSS Score 0.04 EPSS Percentile 9.04 |
|
Risk Context N/A |
|
Published: June 18, 2024 |
|
The vCenter Server contains multiple local privilege escalation vulnerabilities due to misconfiguration of sudo. An authenticated local user with non-administrative privileges may exploit these issues to elevate privileges to root on vCenter Server Appliance. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2022-0847 |
|
HIGH CVSS 7.80 EPSS Score 7.58 EPSS Percentile 94.16 |
|
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
|
Published: March 10, 2022 |
|
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system. |
|
Vendors Impacted: Netapp, Siemens, Redhat, Ovirt, Linux, Sonicwall, Fedoraproject |
|
Products Impacted: H300s Firmware, H300e, H500s Firmware, Enterprise Linux For Ibm Z Systems Eus, Linux Kernel, Enterprise Linux For Real Time Tus, Kernel, Fedora, H700s, Ovirt-Engine, H410c Firmware, H500s, Enterprise Linux Server Aus, Enterprise Linux For Real Time For Nfv, H500e, H300e Firmware, Enterprise Linux For Power Little Endian, H700e, H700s Firmware, Enterprise Linux For Ibm Z Systems, Enterprise Linux For Real Time, Enterprise Linux Server Tus, Enterprise Linux For Real Time For Nfv Tus, Enterprise Linux Server For Power Little Endian Update Services , H410s, Enterprise Linux Eus, Sma1000 Firmware, Codeready Linux Builder, H410c, Scalance Lpe9403 Firmware, H500e Firmware, Scalance Lpe9403, H410s Firmware, Enterprise Linux Server Update Services For Sap Solutions, Sma1000, Enterprise Linux For Power Little Endian Eus, Virtualization Host, H300s, H700e Firmware, Enterprise Linux |
|
Quotes
|
|
Headlines |
| Back to top ↑ |
CVE-2024-0762 |
|
HIGH CVSS 7.50 EPSS Score 0.04 EPSS Percentile 9.04 |
|
Actively Exploited |
|
Published: May 14, 2024 |
|
Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ for Intel Ice Lake: from 4.2.0.1 before 4.2.0.323; Phoenix SecureCore™ for Intel Comet Lake: from 4.2.1.1 before 4.2.1.287; Phoenix SecureCore™ for Intel Tiger Lake: from 4.3.0.1 before 4.3.0.236; Phoenix SecureCore™ for Intel Jasper Lake: from 4.3.1.1 before 4.3.1.184; Phoenix SecureCore™ for Intel Alder Lake: from 4.4.0.1 before 4.4.0.269; Phoenix SecureCore™ for Intel Raptor Lake: from 4.5.0.1 before 4.5.0.218; Phoenix SecureCore™ for Intel Meteor Lake: from 4.5.1.1 before 4.5.1.15. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-3079 |
|
HIGH CVSS 7.20 EPSS Score 0.04 EPSS Percentile 9.04 |
|
Risk Context N/A |
|
Published: June 14, 2024 |
|
Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary commands on the device. |
|
Quotes
|
|
Headlines |
| Back to top ↑ |
Accelerate Security Teams
Schedule a free consultation with a vulnerability expert to discuss your use cases and to see a demo.
