All posts by cK-bot

■■■■□ Apple has just sent out two security advisories covering two zero-day security holes, namely: Apple Bulletin HT213219: Kernel code execution bug CVE-2022-22675. This update is for iOS and iPadOS, both of which go to version 15.4.1. https://support.apple.com/en-us/HT213219 Apple Bulletin HT213220: Kernel code execution bug CVE-2022-22675 and kernel data leakage bug CVE-2022-22674. This update is…

■■■■□ Zero-Day: An out-of-bounds write issue was addressed with improved bounds checking. CVE-2022-22675: An out-of-bounds write issue was addressed with improved bounds checking. Impact: An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited. https://support.apple.com/en-gb/HT213219 https://t.me/cKure/11105

■■□□□ United States : The United States Department of Justice (DoJ) has revealed it has indicted an NSA employee for allegedly sharing top secret national security information with an unnamed person who worked in the private sector. https://www.justice.gov/usao-md/pr/national-security-agency-employee-facing-federal-indictment-willful-transmission-and https://regmedia.co.uk/2022/04/01/unkenholz_indictment.pdf https://www.theregister.com/2022/04/01/nsa_employee_secret_data_leak/ https://t.me/cKure/11104

■□□□□ Wyze Cam devices are affected by three security vulnerabilities that can allow attackers to takeover them and access camera feeds. The three flaws reported by the cybersecurity firm are: • An authentication bypass tracked CVE-2019-9564 • A stack-based buffer overflow, tracked as CVE-2019-12266, which could lead to remote control execution. • An unauthenticated access…

■■■□□ ICYMI: CVE-2014-0094 Apache Struts Security Bypass Vulnerability. https://hacksum.net/2014/04/28/cve-2014-0094-apache-struts-security-bypass-vulnerability/ https://t.me/cKure/11102

■■■■□ Another Remote Code Execution bug conflated towards Spring4Shell is in Spring Cloud https://spring.io/blog/2022/03/29/cve-report-published-for-spring-cloud-function https://t.me/cKure/11101

Deleted copy of Spring4Shell exploit code that triggered the infosec storm. https://webcache.googleusercontent.com/search?q=cache:fMlVaoPj2YsJ:https://github.com/helloexp+&cd=1&hl=en&ct=clnk&gl=us https://t.me/cKure/11100

■■■■■ Zero-Day: Spring Framework RCE, Official Announcement {Spring4Shell}. The vulnerability impacts Spring MVC and Spring WebFlux applications running on JDK 9+. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the…

■■■□□ Spring4Shell: Zero-Day Vulnerability in Spring Framework (CVE-2022-22965). https://www.rapid7.com/blog/post/2022/03/30/spring4shell-zero-day-vulnerability-in-spring-framework/ https://t.me/cKure/11098

☆ FORCEDENTRY: Sandbox Escape. A blog by Google’s elite Project zero. The article documents samples share by CitizenLab of the malware the Israel based state-sponsored Cyber-Crime syndicate ‘NSO-Group’ is infecting devices of people. Which often results in their death or harm to them or their relatives. https://googleprojectzero.blogspot.com/2022/03/forcedentry-sandbox-escape.html https://t.me/cKure/11096