The Action ArchivesU.S. Cybersecurity and Infrastructure Security Agency (CISA) has just added new exploits to its actively exploited list, as first noticed by BleepingComputer.
CISA's actions basically serve as a warning to U.S. federal agencies about vulnerabilities currently being exploited in the wild.
One exploit being tracked, CVE-2023-20118, allows hackers to remotely "execute arbitrary commands" on certain VPN routers. These routers include Cisco Small Business Routers RV016, RV042, RV042G, RV082, RV320, and RV325.
"An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface," CISA wrote. "A successful exploit could allow the attacker to gain root-level privileges and access unauthorized data."
In order to take advantage of this exploit, an attacker would need admin credentials. However, as BleepingComputer points out, hackers could take advantage of another vulnerability, CVE-2023-20025, in order to bypass authentication.
Another vulnerability added by CISA is CVE-2018-8639. This bug affects a broad swath of Windows operating systems including Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, and Windows 10 Servers.
According to CISA, this vulnerability "exists in Windows when the Win32k component fails to properly handle objects in memory." A bad actor with local access to the vulnerable system can utilize the exploit to run arbitrary code in kernel mode. BleepingComputer reports that a bad actor could use this vulnerability to "alter data or create rogue accounts with full user rights to take over vulnerable Windows devices."
Microsoft and Cisco have not yet released their own security warning regarding these two exploits.
Topics Cybersecurity
Put Me In, Coach!
The U.N. says pollution is having this effect on 1.7 million children a year
Police find an antique
Here's what Twitter thinks of the new version of 'Top Gear'
This is the fattest of the extremely fat bears
It's no dislike button, but we might get dislike reactions on Facebook Messenger
Michael Jordan’s words of wisdom confused the hell out of everyone
Enjoy NOAA's vital satellite imagery, while you still can
Today's Hurdle hints and answers for May 12, 2025
Construction worker with the voice of an angel does a mean Pavarotti
Best robot vacuum deal: Get the Roborock Q5 Max for 53% off at Amazon
Listen to Willow Smith sing the song Carrie Fisher wrote with Sean Lennon
Hundreds of marines accused of sharing nude photos in secret Facebook group
Yeah, Twitter's watching you even when you're not tweeting
Best robot vacuum deal: Eufy Omni C20 robot vacuum and mop at record
Father John Misty reminds you to take a shower with his song about VR sex with Taylor Swift
The office furniture of the future actually looks pretty good
No, a Japanese man wasn't crushed to death by his porn collection
Stablecoin bill advances in U.S. Senate as Trump critics call to end his crypto dealings
Omar strikes back? Han Solo movie gains 'Wire' star in mystery role
Make Twitter less toxic by fixing your notificationsRemembering Freddy PlimptonStaff Picks: Silvina Ocampo, Gary Shteyngart, Brian TurnerNew Lovers: A Publisher’s Quest to Redefine EroticaStaff Picks: Silvina Ocampo, Gary Shteyngart, Brian TurnerGeorgia Tech vs Ole Miss livestream: How to watch live, kickoff timeIn Alec Soth's New Photographs, a Fresh Take on Public SpaceThe Nervous Systems of BooksBest speakers deal: Get portable speakers for up to 28% off, including JBL and SonyAvoid This Book: The History and Romance of Elastic WebbingBest Anker deals: Get an Anker charger up to $30 offHow a Tchotchke Became a Family Heirloom, of SortsTikTok's breakout stars of the year include Olivia Rodrigo and Taylor Swift.TikTok's biggest trends for 2021: ReportVictor Hugo’s DrawingsOn Train Delays and SelfishnessiPhone 15 vs Z Flip 5 vs Z Fold 5: Comparing specs, price, camerasRemembering SimCity and Seeing Cities As CharactersWordle today: Here's the answer and hints for September 15Photos of 19th Century Alaska Rediscovered Under a Porch 'Fortnite' fans are going wild after the big, purple cube disappeared Surveillance footage after alleged Ryan Lochte robbery released Rihanna visited the massive, headless Rihanna statue in Germany Every single terrible hat Rory and Lorelai wore on 'Gilmore Girls' British teens collect their exam results, react hilariously on Twitter James Patterson releases interactive thriller 'The Chef' on Facebook Messenger Pete Davidson's 'SNL' joke about a GOP candidate didn't go well First look at Henry Cavill in 'The Witcher' inspires glorious memes 10,000 flames lit at the Tower of London mark 100 years since WWI Turbulent footage shows harrowing Russian rocket failure Brazilian police and new footage discredit Lochte's robbery claims Facebook hasn't given up on breaking news Dumbledore's Army is real and ready for the midterm elections Facebook belatedly removes racist Trump campaign ad Pole vaulter claims his penis is not to blame The Eye of Sauron loomed over San Francisco for Halloween Everything we know about the 'Game of Thrones' prequel series Gab is back online thanks to a Seattle domain company Horrifying sorority recruitment video will haunt your dreams Usain Bolt and Andre De Grasse exchange grins in Olympics bromance
2.3531s , 10107.578125 kb
Copyright © 2025 Powered by 【Action Archives】,Steady Information Network