eSecurity Planet

JANUARY 22, 2024

The problem: The Unified Extensible Firmware Interface (UEFI) specification has an open-source network implementation, EDK II, with nine discovered vulnerabilities. CVE-2023-6548 is a remote code execution vulnerability for an authenticated user, and CVE-2023-6549 is a denial-of-service vulnerability. EPMM versions 11.10, 11.9

Authentication 113

Authentication Malware VPN Mobile 113

eSecurity Planet

SEPTEMBER 2, 2024

The fix: Upgrade to SonicWall’s firmware updates for Gen 5 (to version 5.9.2.14-13o), Threat actors exploited this weakness to incorporate devices into botnets, affecting devices running firmware versions up to FullImg-1023-1007-1011-1009. 13o), Gen 6 (to version 6.5.4.15.116n), and Gen 7 (to any version above 7.0.1-5035).

Risk 57

Risk Firewall Firmware Engineering 57

eSecurity Planet

AUGUST 13, 2024

If exploited, the vulnerability would allow a threat actor to execute their own code within the processor’s firmware using System Management Mode (SMM). The vulnerability is tracked as CVE-2023-31315 and has a CVSS score of 7.5. This can happen even when SMM is locked.

Firmware 109

Firmware Software Wireless Security Defenses 109

eSecurity Planet

AUGUST 13, 2024

If exploited, the vulnerability would allow a threat actor to execute their own code within the processor’s firmware using System Management Mode (SMM). The vulnerability is tracked as CVE-2023-31315 and has a CVSS score of 7.5. This can happen even when SMM is locked.

Firmware 104

Firmware Software Wireless Security Defenses 104

eSecurity Planet

MAY 2, 2024

The 2023 vendor surveys arriving this quarter paint a picture of a cybersecurity landscape under attack, with priority issues affecting deployment, alert response, and exposed vulnerabilities. Sophos: Noted that 43% of all 2023 malware signature updates are for stealers, spyware, and keyloggers often used to steal credentials from devices.

Cybersecurity 121

Cybersecurity DDOS Penetration Testing Passwords 121

eSecurity Planet

JUNE 10, 2024

Timothy Hjort discovered these vulnerabilities , which allow the execution of OS commands and the uploading of malicious files, compromising the security of affected devices. The fix: Zyxel issued firmware patches 5.21(AAZF.17)C0 17)C0 for NAS326 and 5.21(ABAG.14)C0 Users should apply these updates right away to protect their devices.

Malware 80

Malware Authentication Software Telecommunications 80

eSecurity Planet

MAY 27, 2024

Immediately update your QNAP devices to the most recent firmware to mitigate these issues. GitLab also patched six medium-severity vulnerabilities, including CSRF via Kubernetes Agent Server, ( CVE-2023-7045 ) and DoS ( CVE-2024-2874 ). Check for future updates and be cautious while sharing download links to avoid exploitation.

Backups 67

Backups Authentication DDOS Engineering 67

eSecurity Planet

JULY 8, 2024

To protect your network devices from potential risks, apply patches on a regular basis and keep their firmware up to date. The fix: CocoaPods fixed these flaws and reset all user sessions since October 2023. CVE-2023-2071 exploits insufficient input validation to upload and load malicious DLLs, resulting in remote code execution.

Risk 62

Risk Authentication Firmware Surveillance 62

eSecurity Planet

DECEMBER 7, 2023

This feature can be included in firmware, in operating systems, or as a feature in open-source, shareware, or commercial applications. Full-disk encryption protects against the theft of the device or hard drive when they are powered down by rendering the contents of the device unreadable without the security key.

Encryption 109

Encryption Authentication Passwords Password Management 109

eSecurity Planet

MARCH 4, 2024

The fix: To eliminate malware infections, perform a factory reset, upgrade to the latest firmware, change all default usernames and passwords, and adjust firewall rules to block exposure to unwanted remote management services. The fix: Patch or isolated vulnerable Windows systems.

IoT 117

IoT Internet Internet Ransomware 117