April 22, 2023Rabbi Lakshmananpatch management / vulnerabilities

The US Cybersecurity and Infrastructure Security Agency (CISA) on Friday added three security flaws to its known exploited vulnerabilities (KEV) Catalog based on evidence of active exploitation.

of 3 vulnerabilities As follows –

  • CVE-2023-28432 (CVSS Score – 7.5) – MinIO Information Disclosure Vulnerability
  • CVE-2023-27350 (CVSS Score – 9.8) – PaperCut MF/NG Improper Access Control Vulnerability
  • CVE-2023-2136 (CVSS Score – TBD) – Google Chrome Skia Integer Overflow Vulnerability

“In a cluster deployment, MinIO returns all environment variables including MINIO_SECRET_KEY and MINIO_ROOT_PASSWORD, which causes information disclosure,” MinIO maintainer Said In an advisory published on March 21, 2023.

The data collected by GreNoise are 18 unique malicious IP addresses From USA, Holland, France, Japan, Finland tried to exploit Defects in the last 30 days.

threat intelligence company Alert Published at the end of last month, and Reference implementation The plugin provided by OpenAI for developers to integrate their plugins into ChatGPT relied on an older version of MinIO vulnerable to CVE-2023-28432.

“The new features released by OpenAI are valuable tools for developers who want to access live data from different providers in their ChatGPT integrations, but security should remain a core design principle,” said GreyNoise. says.

Also added to the KEV catalog is a critical remote code execution bug affecting PaperCut print management software that allows remote attackers to bypass authentication and execute arbitrary code.

This vulnerability has been addressed by the vendor as of March 8, 2023 with the release of PaperCut MF and PaperCut NG versions 20.1.7, 21.2.11, and 22.0.9.zero-day initiative report The January 10, 2023 issue will be released on May 10, 2023 with additional technical details.

upcoming webinars

Zero Trust + Deception: Learn How to Outsmart Attackers!

See how Deception can detect advanced threats, stop lateral movement, and strengthen your Zero Trust strategy. Join us for an insightful webinar!

Save my seat!

according to update It was shared by the Melbourne-based company earlier this week.

Cyber ​​Security Company Arctic Wolf Said “We have observed intrusion activity involving a vulnerable PaperCut server with the RMM tool Synchro MSP loaded on the victim’s system.”

Last added to the list of actively exploited flaws was a vulnerability in Google Chrome affecting the Skia 2D graphics library that allowed attackers to perform a sandbox escape via a specially crafted HTML page. it might work.

The US Federal Civil Administration (FCEB) agency recommends fixing the identified vulnerabilities by May 12, 2023 to protect your network from active threats.

Did you find this article interesting?Please follow us twitter and LinkedIn To read more exclusive content that we post.

cropped-BTA_Logo-B-1-scaled-1
YOUR FUTURE STARTS HERE.

BLUE TRAINING ACADEMY

Register now for our membership to gain access to our elite training program and fast forward your career today!

Newsletter

Subscribe my Newsletter for new blog posts, tips & new photos. Let's stay updated!

cropped-BTA_Logo-B-1-scaled-1
Security Blog

Blue Training Academy

Blue Training Academy was developed in 2018 as a educational and training facility for continuing education and certification courses. Blue Training Academy is an educational institution that allows for all sectors of the public and Criminal Justice field to gain ongoing training and education.

Copyright ©️ All rights reserved. | Blue Training Academy Blog