yaracroft @venom@nanao.cybtex.fr

(CVE-2022-2841) PoC for CrowdStrike Falcon 6.31.14505./6.42.15610 #cyber #cloud #edr #vuln #threats #informatique

https://www.modzero.com/advisories/MZ-22-02-CrowdStrike-FalconSensor.txt

CVE-2022-35742 : PoC for Microsoft Outlook's Denial of Service vulnerability (patched) #vuln #mail #windows #informatique

https://github.com/78ResearchLab/PoC/tree/main/CVE-2022-35742

RCE on Spip

• Preauth custom SSTI on icalendar generation
• Postauth email content eval
• Postauth code injection in MediaBox as a WebMestre
• Postauth php file upload // t0
• DNS Rebinding on the file upload feature // t0

#web #online #spip #software #threats #vuln #informatique

https://thinkloveshare.com/hacking/rce_on_spip_and_root_me_v2/

🇨🇭 Un expert informatique a identifié une faille de sécurité sur l'une plateforme des Chemins de Fer Fédéraux suisses (cff.ch) lui permettant d'accéder aux données de 500 000 clients Swisspass. Aujourd'hui, on apprend que les chemins de fer étaient au courant de cette faille depuis 2018 #swiss #cyber #transport #railway #vuln #clients #databreach #rail #industry #transportation #services #customers #trains #suisse #informatique

https://www.ictjournal.ch/news/2022-08-19/mise-a-jour-les-cff-mettent-trois-ans-a-colmater-la-fuite-de-donnees

🇺🇸 SolarWinds : One of the most sophisticated attacks in U.S. history. #usa #security #microsoft #national #threats #cyber #future #databreach #software #vuln #sensitive #networks #security #report #international #informatique

https://www.youtube.com/watch?v=yc0eQRwLa7w?t=723

A vulnerability allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account, and if so, which specific account. No passwords were exposed. #vuln #twitter #threats

https://privacy.twitter.com/en/blog/2022/an-issue-affecting-some-anonymous-accounts

🔥 CVE-2022-20842 | CVE-2022-20827 | CVE-2022-20841

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) #cyber #cisco #networks #vuln #threats #informatique

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-mult-vuln-CbVp4SUR

• 🔥 CVE-2022-29154

A critical arbitrary file write vulnerability in the Rsync (before 3.2.5) utility that allows malicious remote servers to write arbitrary files inside th directories of connecting peers. #software #vuln #linux #networks #cyber #threats #informatique

🛠 Appliquez le correctif de sécurité dans les plus brefs délais.

https://nvd.nist.gov/vuln/detail/CVE-2022-29154

Microsoft Security Response Center found a Private-Sector Offensive Actor. PSOAs also refers to as cyber mercenaries, sell hacking tools or services. KNOTWEED, developed malware called Subzero. #cyber #malware #windows #vuln #exploits #threats #informatique

https://www.microsoft.com/security/blog/2022/07/27/untangling-knotweed-european-private-sector-offensive-actor-using-0-day-exploits/

👻 RETBleed

Arbitrary Speculative Code Execution with Return Instructions #vuln #chips #threats #informatique

• (new) Phantom Poc (AMD 17h)https://github.com/comsec-group/retbleed

https://comsec.ethz.ch/wp-content/files/retbleed_sec22.pdf

🚨 (CVE-2022-2274) - Heap memory corruption with RSA private key operation #vuln #crypto #ssl #cryptography #threats #informatique

https://nvd.nist.gov/vuln/detail/CVE-2022-2274

🐧 (CVE-2022-32250) Linux Kernel use-after-free write in netfilterallows a local user (able to create user/net namespaces) to escalate privileges to root #vuln #linux #informatique

🛠 Game Of Active Directory

GOAD is a vulnerable Active Directory environement for pentesters. #tools #microsoft #vuln #infosec #informatique

https://github.com/Orange-Cyberdefense/GOAD

🛠 MalSeclogon is a a little tool to « play » with the Seclogon service #tools #windows #vuln #infosec #informatique

https://github.com/antonioCoco/MalSeclogon

cloudvulndb is an open project to list all known #cloud vulnerabilities and security issues. #vuln #threats #providers #informatique

History: cloud providers don't issue CVEs for security vulnerabilities, so there's no transparency about issues.

https://www.cloudvulndb.org

(CVE-2022-30333) - An attacker is able to create files outside of the target extraction directory when an application or victim user extracts an untrusted RAR archive. If they can write to a known location, they are likely to be able to leverage it in a way leading to the execution of arbitrary commands on the system. #vuln #threats #informatique

https://blog.sonarsource.com/zimbra-pre-auth-rce-via-unrar-0day/

🛠 DFSCoerce : PoC for MS-DFSNM coerce authentication using NetrDfsRemoveStdRoot() method #tools #windows #vuln #infosec #informatique

https://github.com/Wh04m1001/DFSCoerce

🇮🇳 An indian government website (pmkisan.gov.in) was exposing the Aadhaar numbers of India's farmers, potentially amounting to hundreds of millions of people. #india #government #web #online #food #inde #vuln #farmers #citizens #informatique

https://techcrunch.com/2022/06/13/aadhaar-leak-pm-kisan/

CVE-2022-23088 - FreeBSD patched a 13-year-old heap overflow in the Wi-Fi stack that could allow network-adjacent attackers to execute arbitrary code on affected installations of FreeBSD Kernel. #vuln #freebsd #wifi #networks #informatique

https://www.zerodayinitiative.com/blog/2022/6/15/cve-2022-23088-exploiting-a-heap-overflow-in-the-freebsd-wi-fi-stack

• https://github.com/thezdi/PoC/tree/master/CVE-2022-23088

💀 Hertzbleed Side-Channel Attack allows to remotely steal encryption keys from #AMD (CVE-2022-23823) & #Intel (CVE-2022-24436) chips.

#vuln #crypto #chips #threats #cryptographic #informatique

https://www.hertzbleed.com