News

  • What You Need to Know About Hybrid Cloud Environments Thu, 17 Jun 2021 15:32:06 +0000

    What does your cloud configuration look like? In many organizations, moving workloads to the cloud creates a more elastic technology infrastructure. That’s why hybrid cloud environments are a popular solution. A hybrid cloud computing environment requires orchestration between two types of platforms: On-premises, private cloud: Computing services offered to select users over the internet or […]

    The post What You Need to Know About Hybrid Cloud Environments appeared first on CIS.

Looking Glass Cyber
    Malware Patrol SecList
    • Black Kingdom ransomware
      Black Kingdom ransomware appeared on the scene back in 2019, but we observed some activity again in 2021. The ransomware was used by an unknown adversary for exploiting a Microsoft Exchange vulnerability (CVE-2021-27065).
    securingtomorrow.mcafee.com Quick Heal Threat Post Naked Security Security Affairs

    Security Awareness Tips of the week

    Exploits

    Last 20 Website Defacements - Zone-h

    Advisories

    Symantec Packet Stoem Security

    • Ubuntu Security Notice USN-4991-1 Thu, 17 Jun 2021 18:34:57 GMT
      Ubuntu Security Notice 4991-1 - Yunho Kim discovered that libxml2 incorrectly handled certain error conditions. A remote attacker could exploit this with a crafted XML file to cause a denial of service, or possibly cause libxml2 to expose sensitive information. This issue only affected Ubuntu 14.04 ESM, and Ubuntu 16.04 ESM. Zhipeng Xie discovered that libxml2 incorrectly handled certain XML schemas. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 LTS. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2479-01 Thu, 17 Jun 2021 18:34:10 GMT
      Red Hat Security Advisory 2021-2479-01 - Red Hat OpenShift Container Storage is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Container Storage is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. Issues addressed include a cross site scripting vulnerability.
    • Ubuntu Security Notice USN-4990-1 Thu, 17 Jun 2021 18:27:31 GMT
      Ubuntu Security Notice 4990-1 - It was discovered that Nettle incorrectly handled RSA decryption. A remote attacker could possibly use this issue to cause Nettle to crash, resulting in a denial of service. It was discovered that Nettle incorrectly handled certain padding oracles. A remote attacker could possibly use this issue to perform a variant of the Bleichenbacher attack. This issue only affected Ubuntu 18.04 LTS. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2476-01 Thu, 17 Jun 2021 18:23:27 GMT
      Red Hat Security Advisory 2021-2476-01 - Red Hat Decision Manager is an open source decision management platform that combines business rules management, complex event processing, Decision Model & Notation execution, and Business Optimizer for solving planning problems. It automates business decisions and makes that logic available to the entire business. This release of Red Hat Decision Manager 7.11.0 serves as an update to Red Hat Decision Manager 7.10.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include XML injection, code execution, denial of service, and server-side request forgery vulnerabilities.
    • Trojan.Win32.Alien.erf Directory Traversal Thu, 17 Jun 2021 18:21:19 GMT
      Trojan.Win32.Alien.erf malware suffers from a directory traversal vulnerability.
    • Red Hat Security Advisory 2021-2475-01 Thu, 17 Jun 2021 18:16:15 GMT
      Red Hat Security Advisory 2021-2475-01 - Red Hat Process Automation Manager is an open source business process management suite that combines process management and decision service management and enables business and IT users to create, manage, validate, and deploy process applications and decision services. This release of Red Hat Process Automation Manager 7.11.0 serves as an update to Red Hat Process Automation Manager 7.10.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include XML injection, code execution, denial of service, and server-side request forgery vulnerabilities.
    • Red Hat Security Advisory 2021-2472-01 Thu, 17 Jun 2021 18:09:26 GMT
      Red Hat Security Advisory 2021-2472-01 - This release adds the new Apache HTTP Server 2.4.37 Service Pack 8 packages that are part of the JBoss Core Services offering. This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 7 and includes bug fixes and enhancements. Issues addressed include null pointer and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2021-2469-01 Thu, 17 Jun 2021 18:09:00 GMT
      Red Hat Security Advisory 2021-2469-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-2471-01 Thu, 17 Jun 2021 18:01:23 GMT
      Red Hat Security Advisory 2021-2471-01 - Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release adds the new Apache HTTP Server 2.4.37 Service Pack 8 packages that are part of the JBoss Core Services offering. This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 7 and includes bug fixes and enhancements. Issues addressed include null pointer and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2021-2467-01 Thu, 17 Jun 2021 17:57:29 GMT
      Red Hat Security Advisory 2021-2467-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.
    • Red Hat Security Advisory 2021-2461-01 Thu, 17 Jun 2021 17:53:22 GMT
      Red Hat Security Advisory 2021-2461-01 - Red Hat Advanced Cluster Management for Kubernetes 2.2.4 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs and security issues. Issues addressed include denial of service and integer overflow vulnerabilities.
    • Ubuntu Security Notice USN-4989-2 Thu, 17 Jun 2021 17:49:44 GMT
      Ubuntu Security Notice 4989-2 - USN-4989-1 fixed several vulnerabilities in BlueZ. This update provides the corresponding update for Ubuntu 16.04 ESM. It was discovered that BlueZ incorrectly checked certain permissions when pairing. A local attacker could possibly use this issue to impersonate devices. Various other issues were also addressed.
    • Ubuntu Security Notice USN-4989-1 Thu, 17 Jun 2021 17:45:55 GMT
      Ubuntu Security Notice 4989-1 - It was discovered that BlueZ incorrectly checked certain permissions when pairing. A local attacker could possibly use this issue to impersonate devices. Jay LV discovered that BlueZ incorrectly handled redundant disconnect MGMT events. A local attacker could use this issue to cause BlueZ to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2459-01 Thu, 17 Jun 2021 17:40:11 GMT
      Red Hat Security Advisory 2021-2459-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.
    • Red Hat Security Advisory 2021-2456-01 Thu, 17 Jun 2021 17:37:26 GMT
      Red Hat Security Advisory 2021-2456-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and memory leak vulnerabilities.
    • Red Hat Security Advisory 2021-2445-01 Wed, 16 Jun 2021 14:24:51 GMT
      Red Hat Security Advisory 2021-2445-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. The ceph-ansible package provides Ansible playbooks for installing, maintaining, and upgrading Red Hat Ceph Storage. The tcmu-runner packages provide a service that handles the complexity of the LIO kernel target's userspace passthrough interface. It presents a C plugin API for extension modules that handle SCSI requests in ways not possible or suitable to be handled by LIO's in-kernel backstores. Issues addressed include cross site scripting and remote shell upload vulnerabilities.
    • SAP Solution Manager 7.20 Missing Authorization Tue, 15 Jun 2021 15:49:33 GMT
      Due to a missing authorization check in the SAP Solution Manager version 7.20 LM-SERVICE component, a remote authenticated attacker could be able to execute privileged actions in the affected system, including the execution of operating system commands.
    • Red Hat Security Advisory 2021-2439-01 Tue, 15 Jun 2021 15:49:18 GMT
      Red Hat Security Advisory 2021-2439-01 - Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 21.0.0.6 serves as a replacement for Open Liberty 21.0.0.3, and includes a security fix and enhancements. For specific information about this release, see links in the References section. Issues addressed include a cross site request forgery vulnerability.
    • Red Hat Security Advisory 2021-2417-01 Tue, 15 Jun 2021 15:46:42 GMT
      Red Hat Security Advisory 2021-2417-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.
    • SAP XMII Remote Code Execution Tue, 15 Jun 2021 15:43:56 GMT
      By abusing a code injection vulnerability in SAP MII, an authenticated user with SAP XMII developer privileges could execute code (including OS commands) on the server. Versions affected include XMII 15.1 lower than SP006 PL 000062, XMII 15.2 lower than SP003 PL 000038, XMII 15.3 lower than SP001 PL 000022, and XMII 15.4 lower than SP001 PL 000007.
    • SAP Solution Manager 7.2 Missing Authorization Tue, 15 Jun 2021 15:34:47 GMT
      Any authenticated user of the SAP Solution Manager version 7.2 is able to craft, upload, and execute EEM scripts on the SMDAgents affecting its integrity, confidentiality and availability.
    • SAP Solution Manager 7.2 File Disclosure / Denial Of Service Tue, 15 Jun 2021 15:32:58 GMT
      The End-User Experience Monitoring (EEM) application, part of the SAP Solution Manager version 7.2, is vulnerable to path traversal. As a consequence, an unauthorized attacker would be able to read sensitive OS files and affect the availability of the EEM robots connected to the SolMan.
    • SAP Wily Introscope Enterprise Default Hard-Coded Credentials Tue, 15 Jun 2021 15:23:02 GMT
      SAP Wily Introscope Enterprise versions 9.7, 10.1, 10.5, and 10.7 suffer from having default hard-coded credentials.
    • Red Hat Security Advisory 2021-2420-01 Tue, 15 Jun 2021 15:18:36 GMT
      Red Hat Security Advisory 2021-2420-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Issues addressed include a buffer overflow vulnerability.
    • SAP Wily Introscope Enterprise OS Command Injection Tue, 15 Jun 2021 15:04:10 GMT
      SAP Wily Introscope Enterprise versions 9.7, 10.1, 10.5, and 10.7 suffer from a command injection vulnerability.