The Cybersecurity & Infrastructure Security Agency (CISA) is well-known for providing preventive measures to all organizations based on their recent research and exploitation from threat actors.
CISA has recently added and published a list of 8 new vulnerabilities which are currently being exploited in the wild by attackers.
These new vulnerabilities were related to two major organizations, Samsung and D-Link.
The 8 new vulnerabilities are,
This vulnerability exists in the UPnP endpoint of D-Link and has a CVSS Score of 9.8 (Critical).
This vulnerability exists in the configBackup or downloadServerip parameter and has a CVSS Score of 7.8 (High).
Earlier in March 2023, the threat actors leveraged the following D-Link (CVE-2019-17621, CVE-2019-20500) vulnerabilities to spread a variant of the Mirai botnet.
This vulnerability exists due to the lack of boundary checking in a buffer and has a CVSS Score of 7.8 (High).
This vulnerability exists due to improper input validation in the modem interface and has a CVSS Score of 5.5 (Medium).
This vulnerability exists as a race condition in charger drivers and has a CVSS Score of 6.4 (Medium).
A race condition in the charger driver allows local attackers to bypass signature checks. This vulnerability has a CVSS Score of 6.4 (Medium).
This vulnerability in the DSP driver allows attackers to load arbitrary ELF libraries and has a CVSS Score of 6.7 (Medium).
This vulnerability exists due to improper boundary checks in the DSP driver, allowing out-of-bounds memory access and having a CVSS Score of 6.7 (Medium).
As of now, there have not been any publicized instances of Samsung mobile device vulnerabilities being exploited, which have been included in CISA’s ‘must-patch’ list this week. However, it is highly likely that a commercial spyware vendor has already capitalized on these vulnerabilities.
This list has been released as part of the Binding Operational Directive, which is working on reducing the risks these known exploits can bring to the federal enterprise.
Users of these products are advised to upgrade to the latest vendor patches provided to eliminate the risk of a cyber attack.
“AI-based email security measures Protect your business From Email Threats!” – .
A very important message from the Norwegian National Cyber Security Centre (NCSC) says that Secure Socket Layer/Transport Layer Security (SSL/TLS)…
Linux is widely used in numerous servers, cloud infrastructure, and Internet of Things devices, which makes it an attractive target…
ViperSoftX malware, known for stealing cryptocurrency information, now leverages Tesseract, an open-source OCR engine, to target infected systems, which extracts…
Santander has confirmed that there was a major data breach that affected its workers and customers in Spain, Uruguay, and…
The U.S. government has offered a prize of up to $5 million for information that leads to the arrest and…
Russia leverages a mix of state-backed Advanced Persistent Threat (APT) groups and financially motivated cybercriminals to achieve its strategic goals,…