2022 and Libraries - Information Management Today

Root access vulnerability in GNU Library C (glibc) impacts many Linux distros

Security Affairs

JANUARY 30, 2024

Qualys researchers discovered a root access flaw, tracked as CVE-2023-6246, in GNU Library C (glibc) affecting multiple Linux distributions. The Qualys Threat Research Unit discovered four security vulnerabilities in the GNU Library C (glibc) , including a heap-based buffer overflow tracked as CVE-2023-6246. in August 2022.

Libraries

Libraries Access Security IT

Google OAuth client library flaw allowed to deploy of malicious payloads

Security Affairs

MAY 19, 2022

Google addressed a high-severity flaw in its OAuth client library for Java that could allow attackers with a compromised token to deploy malicious payloads. The Google OAuth Client Library for Java is designed to work with any OAuth service on the web, not just with Google APIs. or higher), and Google App Engine. Pierluigi Paganini.

Libraries

Libraries Authentication Cybersecurity Security

Microsoft March 2022 Patch Tuesday updates fix 89 vulnerabilities

Security Affairs

MARCH 8, 2022

Microsoft March 2022 Patch Tuesday security updates address 89 vulnerabilities in multiple products, including 3 zero-days. Three flaws addressed by the Microsoft March 2022 Patch Tuesday security updates are zero-day issues, and for two of them, CVE-2022-21990 and CVE-2022-24459, public exploits are available.

Libraries

Libraries IoT Security Cloud

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

FBI seized other domains used by the shadow eBook library Z-Library

Security Affairs

MAY 6, 2023

The FBI disrupted once again the illegal eBook library Z-Library the authorities seized several domains used by the service. The Federal Bureau of Investigation (FBI) seized multiple domains used by the illegal shadow eBook library Z-Library. The library is still reachable through TOR and I2P networks.

Libraries

Libraries Access Cybersecurity Security

A DNS flaw impacts a library used by millions of IoT devices

Security Affairs

MAY 3, 2022

A vulnerability in the domain name system (DNS) component of the uClibc library impacts millions of IoT products. Nozomi Networks warns of a vulnerability, tracked as CVE-2022-05-02, in the domain name system (DNS) component of the uClibc library which is used by a large number of IoT products. ” continues the advisory.

Libraries

Libraries IoT Security Cybersecurity

Mandrake Android spyware found in five apps in Google Play with over 32,000 downloads since 2022

Security Affairs

JULY 30, 2024

A new version of the Mandrake Android spyware has been found in five apps on Google Play, which have been downloaded over 32,000 times since 2022. Researchers from Kaspersky discovered a new version of the Mandrake Android spyware in five app on Google Play, totaling over 32,000 downloads between 2022 and 2024.

Libraries

Libraries Communications Encryption IT

Experts disclosed a 22-year-old bug in popular SQLite Database library

Security Affairs

OCTOBER 25, 2022

A high-severity vulnerability, tracked as CVE-2022-35737, has been disclosed in the SQLite database library. The security expert Andreas Kellas detailed a high-severity vulnerability, tracked as CVE-2022-35737 (CVSS score: 7.5), in the SQLite database library, which was introduced in October 2000. on July 21, 2022.

Libraries

Libraries Security IT Information Security

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

Krebs on Security

JANUARY 11, 2022

By all accounts, the most severe flaw addressed today is CVE-2022-21907, a critical, remote code execution flaw in the “ HTTP Protocol Stack.” ” Microsoft says the flaw affects Windows 10 and Windows 11 , as well as Server 2019 and Server 2022. “Test and deploy this patch quickly.” ” Quickly indeed.

Libraries

Libraries Security Access IT

Researchers disclosed a remote code execution flaw in Fastjson Library

Security Affairs

JUNE 16, 2022

Researchers disclosed a remote code execution vulnerability, tracked as CVE-2022-25845, in the popular Fastjson library. Cybersecurity researchers from JFrog disclosed details of a now patched high-severity security vulnerability in the popular Fastjson library that could be potentially exploited to achieve remote code execution.

Libraries

Libraries Cybersecurity Security IT

Google fixes the fourth Chrome zero-day in 2022

Security Affairs

JULY 4, 2022

Google addressed a high-severity zero-day Chrome vulnerability actively exploited in the wild, it is the fourth zero-day patched in 2022. Google has released Chrome 103.0.5060.114 for Windows to fix a high-severity zero-day Chrome vulnerability, tracked as CVE-2022-2294, which is actively exploited in the wild. ” Google added.

Libraries

Libraries Communications Access IT

Remote code execution bug discovered in the popular JsonWebToken library

Security Affairs

JANUARY 10, 2023

The open-source jsonwebtoken (JWT) library is affected by a high-severity security flaw that could lead to remote code execution. The open-source JsonWebToken ( JWT ) library is affected by a high-severity security flaw, tracked as CVE-2022-23529 (CVSS score: 7.6), that could lead to remote code execution. addressed the issue.

Libraries

Libraries Security awareness Authentication Security

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Security Affairs

APRIL 9, 2023

The development team behind the vm2 JavaScript sandbox library addressed a critical Remote Code Execution vulnerability. servers, it has approximately four million weekly downloads and its library is part of 722 packages. servers, it has approximately four million weekly downloads and its library is part of 722 packages.

Libraries

Libraries File names Education Cybersecurity

Microsoft February 2022 Patch Tuesday security updates fix a zero-day

Security Affairs

FEBRUARY 9, 2022

Microsoft February 2022 Patch Tuesday security updates addressed 51 flaws in multiple products, including a zero-day bug. Microsoft February 2022 Patch Tuesday also addressed a publicly disclosed Elevation of Privilege zero-day in Windows Kernel tracked as CVE-2022-21989. both received a CVSS score of 8.8.

Security

Security Libraries Access IT

Securing Easy Appointments and earning CVE-2022-0482

Security Affairs

APRIL 11, 2022

Easy Appointments contained a very dangerous Broken Access Control vulnerability tracked as CVE-2022-0482 that was exposing PII. The recently discovered CVE-2022-0482 is a Broken Access Control vulnerability affecting Easy Appointments, a popular open-source web app written in PHP, used by thousands of sites to manage their online bookings.

Security

Security Cybersecurity Libraries Access

Popular open-source PJSIP library is affected by critical flaws

Security Affairs

MARCH 2, 2022

Researchers from JFrog’s Security Research team discovered five vulnerabilities in the PJSIP open-source multimedia communication library. Researchers from JFrog’s Security Research team discovered five vulnerabilities in the popular PJSIP open-source multimedia communication library. on February 24, 2022.

Libraries

Libraries Communications Security IT

Google fixes the fourth Chrome zero-day in 2022

Security Affairs

JULY 4, 2022

Google addressed a high-severity zero-day Chrome vulnerability actively exploited in the wild, it is the fourth zero-day patched in 2022. Google has released Chrome 103.0.5060.114 for Windows to fix a high-severity zero-day Chrome vulnerability, tracked as CVE-2022-2294, which is actively exploited in the wild. ” Google added.

Libraries

Libraries Communications Access IT

New Android malicious library Goldoson found in 60 apps +100M downloads

Security Affairs

APRIL 15, 2023

The Goldoson library was discovered by researchers from McAfee’s Mobile Research Team, it collects lists of applications installed on a device, and a history of Wi-Fi and Bluetooth devices information, including nearby GPS locations. The experts have found more than 60 applications in Google Play that were containing the malicious library.

Libraries

Libraries Data collection Education Security

Google fixes a new actively exploited Chrome zero-day, it is the seventh one this year

Security Affairs

OCTOBER 28, 2022

Google Thursday released an emergency patch for Chrome 107 to address the actively exploited zero-day vulnerability CVE-2022-3723. Google released an emergency update for the Chrome 107 to address an actively exploited zero-day vulnerability tracked as CVE-2022-3723. šek, Milánek, and Przemek Gmerek of Avast on October 25, 2022.

Libraries

Libraries IT Communications Access

Microsoft Partch Tuesday for April 2022 fixed 10 critical vulnerabilities

Security Affairs

APRIL 12, 2022

Microsoft Partch Tuesday security updates for April 2022 fixed 128 vulnerabilities, including an actively exploited zero-day reported by NSA. One of these flaws, tracked as CVE-2022-24521 (CVSS score 7.8), is a Windows Common Log File System Driver Elevation of Privilege issue that is actively exploited. Pierluigi Paganini.

Libraries

Libraries Cybersecurity Security IT

Google rolled out emergency fixes to address actively exploited Chrome zero-day

Security Affairs

SEPTEMBER 3, 2022

Google on Friday released emergency fixes to address a vulnerability, tracked as CVE-2022-3075, in the Chrome web browser that is being actively exploited in the wild. The CVE-2022-3075 flaw is caused by insufficient data validating in Mojo. The vulnerability was reported by an anonymous researcher on August 30, 2022.

Libraries

Libraries Communications Security IT

Palo Alto Networks devices affected by CVE-2022-0778 OpenSSL bug

Security Affairs

APRIL 7, 2022

Palo Alto Networks addressed a high-severity OpenSSL infinite loop vulnerability, tracked as CVE-2022-0778 , that affects some of its firewall, VPN, and XDR products. According to Palo Alto Networks, the CVE-2022-0778 vulnerability can be exploited by remote attackers to trigger a denial of service condition and crash vulnerable devices.

Libraries

Libraries Cybersecurity Authentication Security

New Go-based Redigo malware targets Redis servers

Security Affairs

DECEMBER 1, 2022

Redigo is a new Go-based malware employed in attacks against Redis servers affected by the CVE-2022-0543 vulnerability. Threat actors are exploiting a critical vulnerability, tracked as CVE-2022-0543 , in Redis (Remote Dictionary Server) servers. In March 2022, the U.S. Attackers loads the library file exp_lin.so

Libraries

Libraries Honeypots Communications Cybersecurity

OpenSSL version 3.0.5 fixes a flaw that could potentially lead to RCE

Security Affairs

JULY 7, 2022

The development team behind the OpenSSL project fixed a high-severity bug in the library that could potentially lead to remote code execution. The maintainers of the OpenSSL project fixed a high-severity heap memory corruption issue , tracked as CVE-2022-2274 , affecting the popular library. released on June 21, 2022.

Libraries

Libraries Encryption Communications Security

Chrome emergency update fixes actively exploited a zero-day bug

Security Affairs

MARCH 25, 2022

for Windows, Mac, and Linux users to address a high-severity zero-day bug, tracked as CVE-2022-1096, exploited in the wild. The CVE-2022-1096 vulnerability is a Type Confusion in V8 JavaScript engine, the bug was reported by an anonymous on 2022-03-23. “Google is aware that an exploit for CVE-2022-1096 exists in the wild.”

Libraries

Libraries Access Security IT

Latest OpenSSL version is affected by a remote memory corruption flaw

Security Affairs

JUNE 28, 2022

Expert discovered a remote memory-corruption vulnerability affecting the latest version of the OpenSSL library. The library was released on June 21, 2022, and affects x64 systems with the AVX-512 instruction set. “OpenSSL version 3.0.4,

Libraries

Libraries Paper Risk Security

Experts warn of CVE-2022-42889 Text4Shell exploit attempts

Security Affairs

OCTOBER 21, 2022

GitHub’s threat analyst Alvaro Munoz this week disclosed a remote code execution vulnerability, tracked as CVE-2022-42889 (CVSS score 9.8), in the open-source Apache Commons Text library. Apache Commons Text is a library focused on algorithms working with strings. ” reads the post published by Wordfence.

Libraries

Libraries Security IT Information Security

Text4Shell, a remote code execution bug in Apache Commons Text library

Security Affairs

OCTOBER 19, 2022

Researcher discovered a remote code execution vulnerability in the open-source Apache Commons Text library. GitHub’s threat analyst Alvaro Munoz discovered a remote code execution vulnerability, tracked as CVE-2022-42889, in the open-source Apache Commons Text library. ” reads the post published by Munoz.

Libraries

Libraries Security IT Information Security

Threat actors target the infoSec community with fake PoC exploits

Security Affairs

MAY 22, 2022

The expert discovered a post where a researcher were sharing a fake Proof of Concept (POC) exploit code for an RPC Runtime Library Remote Code Execution flaw ( CVE-2022-26809 CVSS 9.8). You will get a backdoor [link] — Tuan Anh Nguyen (@haxor31337) May 19, 2022. This PoC is fake do not run it.

Libraries

Libraries Information Security Cybersecurity Security

Barracuda fixed a new ESG zero-day exploited by Chinese group UNC4841

Security Affairs

DECEMBER 27, 2023

. “In our ongoing investigation, Barracuda has determined that a threat actor has utilized an Arbitrary Code Execution (ACE) vulnerability within a third party library, Spreadsheet::ParseExcel, to deploy a specially crafted Excel email attachment to target a limited number of ESG devices.” ” reads the advisory.

Libraries

Libraries Access Cybersecurity Security

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

JANUARY 23, 2022

CISA is requiring 10 of 17 vulnerabilities added this week to be addressed within February 1st, 2022. CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js

CMS

CMS IT Authentication Libraries

Apple out-of-band patches fix remote code execution bugs in iOS and macOS

Security Affairs

NOVEMBER 10, 2022

Apple released out-of-band patches for iOS and macOS to fix a couple of code execution vulnerabilities in the libxml2 library. Apple released out-of-band patches for iOS and macOS to address two code execution flaws, tracked as CVE-2022-40303 and CVE-2022-40304 , in the libxml2 library for parsing XML documents.

Libraries

Libraries Security IT Information Security

Google fixed the eighth actively exploited #Chrome #zeroday this year

Security Affairs

NOVEMBER 25, 2022

Google on Thursday released security updates to address a new zero-day vulnerability, tracked as CVE-2022-4135, impacting the Chrome web browser. Google rolled out an emergency security update for the desktop version of the Chrome web browser to address a new zero-day vulnerability, tracked as CVE-2022-4135, that is actively exploited.

Libraries

Libraries Communications Security Access

Crowley Company Awarded Service of the Year, Three Platinum Awards in 2022 Library Program

IG Guru

JANUARY 18, 2022

For Immediate Release: January 14, 2022 Frederick, Md. – The post Crowley Company Awarded Service of the Year, Three Platinum Awards in 2022 Library Program appeared first on IG GURU. Since the programs’ inception […].

Libraries

Night Sky ransomware operators exploit Log4Shell to target hack VMware Horizon servers

Security Affairs

JANUARY 11, 2022

Another gang, Night Sky ransomware operation, started exploiting the Log4Shell vulnerability in the Log4j library to gain access to VMware Horizon systems. The Night Sky ransomware operation started exploiting the Log4Shell flaw (CVE-2021-44228) in the Log4j library to gain access to VMware Horizon systems. trendmrcio[.]com,

Ransomware

Ransomware Libraries File names Encryption

Google fixed the ninth actively exploited Chrome zeroday this year

Security Affairs

DECEMBER 3, 2022

Google released security updates to address a new Chrome zero-day flaw, tracked as CVE-2022-4262, actively exploited in the wild. Google rolled out an emergency security update for the Chrome web browser to address a new zero-day vulnerability, tracked as CVE-2022-4262 , that is actively exploited. for Mac and Linux and 108.0.5359.94/.95

Libraries

Libraries Communications Security Information Security

Malicious PyPI package posed as SentinelOne SDK to serve info-stealing malware

Security Affairs

DECEMBER 19, 2022

The malicious package was first uploaded to the repository on December 11, 2022, in just two days, attackers pushed twenty versions of the malicious project. “The malicious functionality in the library does not execute upon installation, but waits to be called on programmatically before activating — a possible effort to avoid detection.

Data collection

Data collection Libraries Access Cybersecurity

DinodasRAT Linux variant targets users worldwide

Security Affairs

MARCH 31, 2024

ESET first discovered a new Linux version of DinodasRAT in October 2023, but experts believe it has been active since 2022. The campaign seems active since at least early 2022 and focuses primarily on government organizations. The library uses the Tiny Encryption Algorithm ( TEA ) in CBC mode to cipher and decipher the data.

Libraries

Libraries Encryption Communications Government

Atlassian addressed four new RCE flaws in its products

Security Affairs

DECEMBER 6, 2023

Below is the list of vulnerabilities addressed by the vendor: CVE-2022-1471 (CVSS score: 9.8) – SnakeYAML library RCE Vulnerability that impacts multiple products. Atlassian released security patches to address four critical remote code execution vulnerabilities in its products.

IT

IT Libraries Security Information Security

Experts shared PoC exploit code for RCE in Zoho ManageEngine ADAudit Plus tool

Security Affairs

JULY 2, 2022

Researchers shared technical details and proof-of-concept exploit code for the CVE-2022-28219 flaw in Zoho ManageEngine ADAudit Plus tool. ai have published technical details and proof-of-concept exploit code for a critical vulnerability, tracked as CVE-2022-28219 (CVSS 9.8 Security researchers from Horizon3.ai

Libraries

Libraries Authentication Security Access

CISA adds Log4Shell Log4j flaw to the Known Exploited Vulnerabilities Catalog

Security Affairs

DECEMBER 13, 2021

The CVE-2021-44228 flaw made the headlines last week, after Chinese security researcher p0rz9 publicly disclosed a Proof-of-concept exploit for the critical remote code execution zero-day vulnerability ( aka Log4Shell ) that affects the Apache Log4j Java-based logging library.

CMS

CMS Authentication Libraries Risk

node-ipc NPM Package sabotage to protest Ukraine invasion

Security Affairs

MARCH 17, 2022

of the library wipe the content of arbitrary files and replace it with a heart emoji. The attack was spotted on March 15, 2022, when users of the popular Vue.js released on March 15, 2022 imports the “peacenotwar” package version from 9.1.3 It has over 1 million weekly downloads. Versions 10.1.1 and 10.1.2

Libraries

Libraries Communications Security IT

Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability

Security Affairs

MARCH 28, 2022

The Muhstik botnet has been observed targeting Redis servers exploiting the recently disclosed CVE-2022-0543 vulnerability. Now researchers from Juniper Threat Labs observed the Muhstik botnet exploiting the CVE-2022-0543 Lua sandbox escape flaw that impacts Debian and Debian-derived Linux distributions. 246.224.219”.

Libraries

Libraries IoT Communications Access

Experts found critical RCE in Spotify’s Backstage

Security Affairs

NOVEMBER 15, 2022

The issue can be exploited by triggering a recently disclosed VM sandbox escape vulnerability (CVE-2022-36067 aka Sandbreak) in the vm2 third-party library. The researchers explained that the template engine utilizes the vm2 library to prevent the execution of untrusted code. ” reads the advisory published by Oxeye.

Libraries

Libraries Authentication Paper Risk

Magecart attacks are still around but are more difficult to detect

Security Affairs

JUNE 22, 2022

[link] #Magecart #ecommerce pic.twitter.com/p3C4EOXh3C — Sansec (@sansecio) June 9, 2022. net/static/counter.js [link] #infosec #cybersecurity #malware pic.twitter.com/F6LJ6CBCCA — Luke Leal (@rootprivilege) June 13, 2022. staticounter[.]net Can't seem to identify a #skimmer in the loaded JS… URL: js[.]staticounter[.]net/static/counter.js

Cleanup

Cleanup CMS Libraries Phishing

Root access vulnerability in GNU Library C (glibc) impacts many Linux distros

Google OAuth client library flaw allowed to deploy of malicious payloads

Webinars

Trending Sources

Microsoft March 2022 Patch Tuesday updates fix 89 vulnerabilities

Webinars

FBI seized other domains used by the shadow eBook library Z-Library

A DNS flaw impacts a library used by millions of IoT devices

Mandrake Android spyware found in five apps in Google Play with over 32,000 downloads since 2022

Experts disclosed a 22-year-old bug in popular SQLite Database library

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

Researchers disclosed a remote code execution flaw in Fastjson Library

Google fixes the fourth Chrome zero-day in 2022

Remote code execution bug discovered in the popular JsonWebToken library

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Microsoft February 2022 Patch Tuesday security updates fix a zero-day

Securing Easy Appointments and earning CVE-2022-0482

Popular open-source PJSIP library is affected by critical flaws

Google fixes the fourth Chrome zero-day in 2022

New Android malicious library Goldoson found in 60 apps +100M downloads

Google fixes a new actively exploited Chrome zero-day, it is the seventh one this year

Microsoft Partch Tuesday for April 2022 fixed 10 critical vulnerabilities

Google rolled out emergency fixes to address actively exploited Chrome zero-day

Palo Alto Networks devices affected by CVE-2022-0778 OpenSSL bug

New Go-based Redigo malware targets Redis servers

OpenSSL version 3.0.5 fixes a flaw that could potentially lead to RCE

Chrome emergency update fixes actively exploited a zero-day bug

Latest OpenSSL version is affected by a remote memory corruption flaw

Experts warn of CVE-2022-42889 Text4Shell exploit attempts

Text4Shell, a remote code execution bug in Apache Commons Text library

Threat actors target the infoSec community with fake PoC exploits

Barracuda fixed a new ESG zero-day exploited by Chinese group UNC4841

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Apple out-of-band patches fix remote code execution bugs in iOS and macOS

Google fixed the eighth actively exploited #Chrome #zeroday this year

Crowley Company Awarded Service of the Year, Three Platinum Awards in 2022 Library Program

Night Sky ransomware operators exploit Log4Shell to target hack VMware Horizon servers

Google fixed the ninth actively exploited Chrome zeroday this year

Malicious PyPI package posed as SentinelOne SDK to serve info-stealing malware

DinodasRAT Linux variant targets users worldwide

Atlassian addressed four new RCE flaws in its products

Experts shared PoC exploit code for RCE in Zoho ManageEngine ADAudit Plus tool

CISA adds Log4Shell Log4j flaw to the Known Exploited Vulnerabilities Catalog

node-ipc NPM Package sabotage to protest Ukraine invasion

Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability

Experts found critical RCE in Spotify’s Backstage

Magecart attacks are still around but are more difficult to detect

Stay Connected