The US Cybersecurity and Infrastructure Security Agency (CISA) on Friday added three security flaws to its known exploited vulnerabilities (KEV) Catalog based on evidence of active exploitation.
of 3 vulnerabilities As follows –
- CVE-2023-28432 (CVSS Score – 7.5) – MinIO Information Disclosure Vulnerability
- CVE-2023-27350 (CVSS Score – 9.8) – PaperCut MF/NG Improper Access Control Vulnerability
- CVE-2023-2136 (CVSS Score – TBD) – Google Chrome Skia Integer Overflow Vulnerability
“In a cluster deployment, MinIO returns all environment variables including MINIO_SECRET_KEY and MINIO_ROOT_PASSWORD, which causes information disclosure,” MinIO maintainer Said In an advisory published on March 21, 2023.
The data collected by GreNoise are 18 unique malicious IP addresses From USA, Holland, France, Japan, Finland tried to exploit Defects in the last 30 days.
threat intelligence company Alert Published at the end of last month, and Reference implementation The plugin provided by OpenAI for developers to integrate their plugins into ChatGPT relied on an older version of MinIO vulnerable to CVE-2023-28432.
โThe new features released by OpenAI are valuable tools for developers who want to access live data from different providers in their ChatGPT integrations, but security should remain a core design principle,โ said GreyNoise. says.
Also added to the KEV catalog is a critical remote code execution bug affecting PaperCut print management software that allows remote attackers to bypass authentication and execute arbitrary code.
This vulnerability has been addressed by the vendor as of March 8, 2023 with the release of PaperCut MF and PaperCut NG versions 20.1.7, 21.2.11, and 22.0.9.zero-day initiative report The January 10, 2023 issue will be released on May 10, 2023 with additional technical details.
Zero Trust + Deception: Learn How to Outsmart Attackers!
See how Deception can detect advanced threats, stop lateral movement, and strengthen your Zero Trust strategy. Join us for an insightful webinar!
according to update It was shared by the Melbourne-based company earlier this week.
Cyber โโSecurity Company Arctic Wolf Said “We have observed intrusion activity involving a vulnerable PaperCut server with the RMM tool Synchro MSP loaded on the victim’s system.”
Last added to the list of actively exploited flaws was a vulnerability in Google Chrome affecting the Skia 2D graphics library that allowed attackers to perform a sandbox escape via a specially crafted HTML page. it might work.
The US Federal Civil Administration (FCEB) agency recommends fixing the identified vulnerabilities by May 12, 2023 to protect your network from active threats.
