In an already fraught environment surrounding the popular Python programming language software package manager, hackers are coming up with new ways to sneak malicious goodies past cybersecurity buffers. Read More
Related Posts
A look into the emotions and anxieties of the highest levels of decision-making.
A look into the emotions and anxieties of the highest levels of decision-making.
Guest Manuel Hepfer from ISTARI shares his research on cyber resilience which includes discussions with 37 CEOs to gain insight into how they manage cybersecurity risk. ISTARI and Oxford University’s Saïd Business School dive into the minds and experiences of CEOs on how they manage cybersecurity risk.
Ask any CEO to name the issues that keep them awake at night and cybersecurity risk is likely near the top of the list – with good reason. With the accelerating digitalisation of business models comes vulnerability to cyberattack. And while spending on cybersecurity increases every year, so does the number of serious incidents. Even the largest and most technologically advanced companies are not immune.
CEOs must formally answer to regulators, shareholders and board members for their organisation’s cybersecurity. Yet the majority (72%) of CEOs we interviewed as part of our research said they were not comfortable making cybersecurity-related decisions. Read More
The CyberWire
Two New FortiSIEM Max-severity Flaw Let Attackers Execute Remote Code
Two New FortiSIEM Max-severity Flaw Let Attackers Execute Remote Code
[[{“value”:”
FortiSIEM has been discovered with multiple OS command injection vulnerabilities, which could allow an unauthenticated remote threat actor to execute unauthorized commands on FortiSIEM via crafted API requests.
The CVEs for these vulnerabilities have been assigned with CVE-2024-23108 and CVE-2024-23109. The severity of these vulnerabilities was given as critical (>=9.8). However, Fortiguard has fixed all the vulnerabilities.
Fortinet has provided a link to its own advisory to furnish additional information. However, when users attempt to access the link, they are directed to an outdated issue that was previously addressed in early October 2023. It is recommended that users seek alternative sources of information until an updated advisory is made available.
Document
Run Free ThreatScan on Your Mailbox
AI-Powered Protection for Business Email Security
Trustifi’s Advanced threat protection prevents the widest spectrum of sophisticated attacks before they reach a user’s mailbox. Try Trustifi Free Threat Scan with Sophisticated AI-Powered Email Protection .
CVE-2024-23108 & CVE-2024-23109: Improper Neutralization of Special Elements
These vulnerabilities exist due to an improper neutralization in Fortinet FortiSIEM version 7.1.0 through 7.1.1 and 7.0.0 through 7.0.2 and 6.7.0 through 6.7.8 and 6.6.0 through 6.6.3 and 6.5.0 through 6.5.2 and 6.4.0 through 6.4.2.
These vulnerabilities will allow a threat actor to execute unauthorized code or commands through specially crafted API requests. These vulnerabilities were credited to Zach Hanley from Horizon3.ai. The severity for these vulnerabilities was given as 10.0 (Critical).
CVE-2023-34992: Improper Neutralization of Special Elements
This vulnerability was also related to an OS command injection in Fortinet FortiSIEM that could allow an unauthenticated attacker to execute unauthorized codes or commands through crafted API requests. The severity for this vulnerability has been given as 9.8 (Critical).
Affected Products and Fixed in Version
Affected ProductsFixed in VersionFortiSIEM version 7.1.0 through 7.1.1FortiSIEM version 7.0.0 through 7.0.2FortiSIEM version 6.7.0 through 6.7.8FortiSIEM version 6.6.0 through 6.6.3FortiSIEM version 6.5.0 through 6.5.2FortiSIEM version 6.4.0 through 6.4.2FortiSIEM version 7.1.2 or aboveFortiSIEM version 7.2.0 or aboveFortiSIEM version 7.0.3 or aboveFortiSIEM version 6.7.9 or aboveFortiSIEM version 6.6.5 or aboveFortiSIEM version 6.5.3 or aboveFortiSIEM version 6.4.4 or above
Fortiguard has released a security advisory to address these vulnerabilities. Users of these products are recommended to upgrade to the latest version of FortiSIEM to prevent these vulnerabilities from getting exploited by threat actors.
Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.
The post Two New FortiSIEM Max-severity Flaw Let Attackers Execute Remote Code appeared first on Cyber Security News.
“}]] Read More
Cyber Security News
Data dump exposes millions of Zacks Investment Research user records. US courts use accountability apps to spy on the accused.
Data dump exposes millions of Zacks Investment Research user records. US courts use accountability apps to spy on the accused.
Data dump exposes millions of Zacks Investment Research user records. US courts use accountability apps to spy on the accused. Read More
The CyberWire