Mixing watering hole attacks with history leak via CSS https://adepts.of0x.cc/css-history-leaks/

I’m in shock

So the Department of Energy emailed me

https://daniel.haxx.se/blog/2024/08/14/so-the-department-of-energy-emailed-me/

The folks from Xiaomi didn't pick up their Pwnie for Lamest Vendor Response, so we're keeping it safe for them until they decide to come accept it.

Ivanti security advisories: August Security Update
Today, fixes have been released for the following solutions: Ivanti Neurons for ITSM, Ivanti Avalanche and Ivanti Virtual Traffic Manager (vTM).

• Ivanti Neurons for ITSM
• Ivanti Avalanche 6.4.4
• Ivanti Virtual Traffic Manager (vTM )

The concerning CVEs:

• CVE-2024-7569 (9.6 critical) An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM
• CVE-2024-7593 (9.8 critical) authentication bypass in Ivanti vTM (PUBLICLY DISCLOSED)
  • "We are not aware of any customers being exploited by this vulnerability at the time of disclosure. However, a Proof of Concept is publicly available"

"We have no evidence of these vulnerabilities being exploited in the wild. These vulnerabilities do not impact any other Ivanti products or solutions."

See related Bleeping Computer reporting: Ivanti warns of critical vTM auth bypass with public exploit

#CVE #PatchTuesday #Ivanti #vulnerability

Palo Alto Networks security advisories:

• CVE-2024-5914 Cortex XSOAR: Command Injection in CommonScripts Pack (CVSSv4: 7.0 high)
• CVE-2024-5916 PAN-OS: Cleartext Exposure of External System Secrets (CVSSv4: 6.0 medium)
• CVE-2024-5915 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability (CVSSv4: 5.2 medium)
• PAN-SA-2024-0007 Prisma Access Browser: Monthly Vulnerability Updates 31 Chromium CVEs from 6772-6779, 6988-6991, 6994-7001, 7003-7005, 7255-7256, 7533-7536, 7550. These CVEs are fixed in Prisma Access Browser 1.0 (supersedes Talon Browser), and all later Prisma Access Browser versions.

"Palo Alto Networks is not aware of any malicious exploitation of this issue."

#panw #paloaltonetworks #patchtuesday #vulnerability #cve

Taylorism is a management philosophy based on using scientific optimization to maximize labor productivity and economic efficiency.

Here's the result of making the false Taylorist assumption that the output of scientific research is scientific papers—the more, faster, and cheaper, the better.

Me to Microsoft: You can avoid a whole class of vulnerability if non-admin users can't create subdirectories off of the root directory. You should fix this.

MS: Nah.

Me: Well, you folks should probably at least run Crassus on your code.

MS: Nah.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38098

Reminder that my book—Rust Atomics and Locks—is freely available online: https://marabos.nl/atomics/ 😊

(If you read it, please leave a review on https://www.goodreads.com/book/show/63291820-rust-atomics-and-locks)

#rustlang

This is cool! https://quic.xargs.org/ [if you’re a security geek.]

Click on a few bubbles.

h/t @nelson

In our writeup https://sector7.computest.nl/post/2024-06-cve-2024-20693-windows-cached-code-signature-manipulation/ about CVE-2024-20693, we noted that Microsoft did not structurally address the trust of "$KERNEL.*" Extended Attributes on SMB shares. Today's Patch Tuesday addresses #CVE-2024-38133, doing the same thing again, but in this case even an USB disk would work!

I think this may be the first time we got an "Exploitation More Likely", so achievement unlocked I guess?

#Microsoft #vulnerability #Windows #PatchTuesday

Better late than never, patches from #Microsoft and #Adobe are finally out - and 6 bugs are under active attack. Check out all the details, including some wormable bugs, as @TheDustinChilds breaks down the release. https://www.zerodayinitiative.com/blog/2024/8/13/the-august-2024-security-update-review