VMware Releases Security Update for vCenter Server and Cloud Foundation
VMware has released a security update to address multiple memory corruption vulnerabilities in vCenter Server and Cloud Foundation. A cyber threat actor could exploit these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review VMware Security Advisory VMSA-2023-0014 and apply the necessary updates.
CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
CVE-2023-32434 Apple Multiple Products Integer Overflow Vulnerability
CVE-2023-32435 Apple iOS and iPadOS WebKit Memory Corruption Vulnerability
CVE-2023-32439 Apple iOS, iPadOS, and macOS WebKit Type Confusion Vulnerability
CVE-2023-20867 VMware Tools Authentication Bypass Vulnerability
CVE-2023-27992 Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To view other newly added vulnerabilities in the catalog, click on the arrow in the “Date Added to Catalog” column—which will sort by descending dates.
Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.
Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.
Fortinet: actualizaciones abordan vulnerabilidad critica en FortiNAC
Recientemente Fortinet ha liberado actualizaciones que tienen como objetivo arreglar vulnerabilidades en productos de FortiNAC, la falla se describe como deserialización de datos no confiables y has sido rastreada como CVE-2023-33299. FortiNAC es un recurso de control de accesos de red o NAC, por sus siglas en inglés, diseñado por Fortinet con la finalidad de […]
Fallo en Teams permite la introducción de malware
Recientemente se ha descubierto una vulnerabilidad en la última versión de Microsoft Teams, la cual permitiría la introducción de malware en cualquier organización que haga uso de Microsoft Teams con su configuración predeterminada. Lo que se logra mediante la evasión de los controles de seguridad de cara al cliente. Microsoft Teams se ha convertido, en […]
RepoJacking: Repositorios de GitHub bajo amenaza
Una gran cantidad de repositorios de GitHub podrían ser vulnerados mediante el secuestro (hijacking) de repositorios de dependencias el cual se denomina “RepoJacking”. Esta modalidad tiene como objetivo el ataque a la cadena de suministros, lo que resulta en una gran cantidad de usuarios afectados. Las observaciones realizadas a ataques de tipo RepoJacking cortesía de […]